From 6f8e947007891b500d9a3ab36c0c4223270902b4 Mon Sep 17 00:00:00 2001 From: zemion Date: Mon, 6 Jul 2026 20:01:41 +0200 Subject: [PATCH] Sync Repo-docs-MODULE-ARCHITECTURE from project files --- Repo-docs-MODULE-ARCHITECTURE.-.md | 12 +++++++----- 1 file changed, 7 insertions(+), 5 deletions(-) diff --git a/Repo-docs-MODULE-ARCHITECTURE.-.md b/Repo-docs-MODULE-ARCHITECTURE.-.md index 039018f..47de345 100644 --- a/Repo-docs-MODULE-ARCHITECTURE.-.md +++ b/Repo-docs-MODULE-ARCHITECTURE.-.md @@ -1,4 +1,4 @@ - + > Mirrored from `/mnt/DATA/git/govoplan-core/docs/MODULE_ARCHITECTURE.md`. > Origin: `repository`. @@ -77,15 +77,17 @@ Known access-related capability names are defined in - `access.directory` - `access.permissionEvaluator` - `access.resourceAccess` +- `access.tenantProvisioner` - `tenancy.tenantResolver` - `security.secretProvider` - `audit.sink` `govoplan-access` currently registers `access.principalResolver`, -`access.permissionEvaluator`, and `access.directory`. `govoplan-tenancy` -registers `tenancy.tenantResolver`. Feature modules should prefer these -capabilities over direct reads of access/tenant ORM models when they need -labels, group membership, or tenant metadata. +`access.permissionEvaluator`, `access.directory`, and +`access.tenantProvisioner`. `govoplan-tenancy` registers +`tenancy.tenantResolver`. Feature modules should prefer these capabilities over +direct reads of access/tenant ORM models when they need labels, group +membership, default access provisioning, or tenant metadata. ## Module Responsibilities