mirror of
https://github.com/trustgraph-ai/trustgraph.git
synced 2026-06-15 09:45:13 +02:00
9f2bfbce0c
Workspace identity is now determined by queue infrastructure instead of message body fields, closing a privilege-escalation vector where a caller could spoof workspace in the request payload. - Add WorkspaceProcessor base class: discovers workspaces from config at startup, creates per-workspace consumers (queue:workspace), and manages consumer lifecycle on workspace create/delete events - Roll out to librarian, flow-svc, knowledge cores, and config-svc - Config service gets a dual-queue regime: a system queue for cross-workspace ops (getvalues-all-ws, bootstrapper writes to __workspaces__) and per-workspace queues for tenant-scoped ops, with workspace discovery from its own Cassandra store - Remove workspace field from request schemas (FlowRequest, LibrarianRequest, KnowledgeRequest, CollectionManagementRequest) and from DocumentMetadata / ProcessingMetadata — table stores now accept workspace as an explicit parameter - Strip workspace encode/decode from all message translators and gateway serializers - Gateway enforces workspace existence: reject requests targeting non-existent workspaces instead of routing to queues with no consumer - Config service provisions new workspaces from __template__ on creation - Add workspace lifecycle hooks to AsyncProcessor so any processor can react to workspace create/delete without subclassing WorkspaceProcessor |
||
|---|---|---|
| .. | ||
| __init__.py | ||
| agent.py | ||
| collection.py | ||
| config.py | ||
| diagnosis.py | ||
| flow.py | ||
| iam.py | ||
| library.py | ||
| llm.py | ||
| lookup.py | ||
| nlp_query.py | ||
| prompt.py | ||
| query.py | ||
| retrieval.py | ||
| rows_query.py | ||
| sparql_query.py | ||
| storage.py | ||
| structured_query.py | ||
| tool_service.py | ||