Sharang Parnerkar
bd6d4572e0
CI / Tests (push) Has been skipped
CI / Format (pull_request) Successful in 4s
CI / Format (push) Successful in 21s
CI / Clippy (push) Successful in 2m59s
CI / Security Audit (push) Has been skipped
CI / Clippy (pull_request) Successful in 2m59s
CI / Security Audit (pull_request) Has been skipped
CI / Tests (pull_request) Has been skipped
CI / Deploy (push) Has been skipped
CI / Deploy (pull_request) Has been skipped
CI / E2E Tests (push) Has been skipped
CI / E2E Tests (pull_request) Has been skipped
Adds the breakpilot platform multi-tenancy claims to the dev realm so M7.x products (starting with compliance-scanner-agent) can authenticate against the local CERTifAI stack end-to-end. New tenant-context client scope, included by default on all three clients, with six protocol mappers backed by user attributes: tenant_id, tenant_slug, tenant_status, plan (strings) org_roles, products (multi-valued) Five test users cover every tenant_status branch: admin@certifai.local (acme, active, IT_ADMIN + CXO) user@certifai.local (acme, active, USER) trial@acme.local (trialco, trial) frozen@acme.local (frozenco, frozen) -> 402 on writes archived@acme.local (archiveco, archived) -> 410 always Enables Direct Access Grants on certifai-dashboard so password- grant requests work for local API testing. This is the dev realm only (KC_DB: dev-mem); prod realms inherit nothing from this file. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>