Skip to content

Implementation Plan: IAM Sovereignty Expansion

This document outlines the technical path for completing the "Missing Bits" of the Allegory of Power IAM system, as defined in Blueprint 07.

Phase 1: Beyond the Veil (Liminal States)

  • Objective: Enable immediate system entry for new requesters while restricting them to learning and status-tracking views.
  • Tasks:
  • Refine Roles: Add UserRole.LIMINAL to roles.ts.
  • Define Bundle: Map VIEW_LEARNING_CENTER and TRACK_IDENTITY_PROGRESS capabilities to the Liminal hat in registry.ts.
  • Detect Liminality: Update PrivilegeRegistry to auto-detect "Identity Catalysis" (new accounts with no profile) and assign the Liminal hat.
  • Liminal UI: Create a specialized dashboard view in DashboardController that renders when the active hat is LIMINAL.

Phase 2: Shadow Records (The Watchlist)

  • Objective: Create a forensic memory of rejections and behavioral patterns.
  • Tasks:
  • Watchlist Service: Implement a retrieval service in @sd/mod-community to query the shadow_records collection.
  • Injection Logic: Update resolveAuthzSnapshot to cross-reference the principalId against Shadow Records.
  • Divine Visibility: Grant the GOD and DEMI_GOD hats the ability to see Watchlist Warnings on user profiles.
  • Forensic Trail: Log "Watchlisted Crossing" events whenever a flagged identity logs on.

Phase 3: Natural Law (Event-Driven Sovereignty)

  • Objective: Transition from manual provisioning to "Natural Law" where access is a side-effect of database events.
  • Tasks:
  • Event Listeners: Set up Firestore triggers (or a localized event bus) for:
    • deeds/ (Ownership Transfer)
    • leases/ (Occupancy Change)
    • contracts/ (Staff/Vendor lifecycle)
  • Memory Invalidation: Implement the invalidate call in PrivilegeRegistry so that any change in the physical layer (The Analog Twin) forces an immediate re-aggregation of the digital sovereignty.
  • Self-Healing Audit: Record "Self-Healing Provisioning" events when the system automatically grants access based on a deed record.

Technical conclusion

By implementing these phases, we move from a system of "Buttons and Toggles" to a system of Physical Truth, where the software is a perfect reflection of the community's legal and behavioral state.

Version History

Version Date Author Change
0.1.0 2026-01-29 Antigravity Initial Audit & Metadata Injection