Tenants
Lifecycle7
0 active lifecycle records
Astitva Admin
Platform Operability
Administrative command center for tenant, user, role, customer lifecycle, identity visibility, recovery framework, and operational risk posture.
Users
Identity0
0 pending · 0 locked/deactivated
Roles
Access3
Governance-visible role records
Open Actions
Review18
7 operational risks visible
Tenants
Tenant lifecycle, status, user coverage, role visibility, and pending administrative work.
| Tenant | Display Name | Lifecycle | Status | Users | Roles | Pending Actions |
|---|---|---|---|---|---|---|
| vyraj | vyraj | draft | disabled | 0 | 0 | lifecycle review, user provisioning, role visibility |
| dkbazaar | dkbazaar | draft | disabled | 0 | 0 | lifecycle review, user provisioning, role visibility |
| vedanthtravels | vedanthtravels | draft | disabled | 0 | 0 | lifecycle review, user provisioning, role visibility |
| techanalytics | techanalytics | draft | disabled | 0 | 0 | lifecycle review, user provisioning, role visibility |
| inquisitech | inquisitech | draft | disabled | 0 | 0 | lifecycle review, user provisioning, role visibility |
| manu | manu | draft | disabled | 0 | 0 | lifecycle review, user provisioning, role visibility |
| sriraghavendra | sriraghavendra | draft | disabled | 0 | 0 | lifecycle review, user provisioning, role visibility |
Users
Tenant-scoped user metadata without credentials, sessions, tokens, or password material.
No tenant users are visible yet.
Roles And Membership
Governance-visible role records and derived membership counts. Runtime enforcement remains outside Admin Web.
| Role | Tenant | Scope | Runtime | Memberships |
|---|---|---|---|---|
| identity_observer | navasoft | tenant | Governance visibility only | 0 |
| identity_observer | example-alpha | tenant | Governance visibility only | 0 |
| identity_observer | example-beta | tenant | Governance visibility only | 0 |
Tenant Management Foundation
Capability state, evidence, and authority boundary.
| Capability | State | Evidence | Boundary |
|---|---|---|---|
| Create Tenant | operational | Admin API tenant create endpoint and Admin Web form exist. | Admin API owns mutation validation. |
| Edit Tenant | framework_ready | Tenant metadata edit descriptor is visible. | Backend persistence contract remains governed. |
| Suspend Tenant | framework_ready | Critical lifecycle descriptor requires evidence and second-person review. | No hidden suspension mutation. |
| Resume Tenant | framework_ready | Critical lifecycle descriptor requires evidence and second-person review. | No hidden resume mutation. |
| Archive Tenant | framework_ready | Critical lifecycle descriptor requires evidence and second-person review. | No hidden archival mutation. |
| View Tenant | operational | Tenant list and runtime parity visibility are available. | Read-only visibility is safe. |
| Tenant Status | operational | Lifecycle/status rows are visible in the command center. | Status source remains Admin API/parity adapter. |
User Management Foundation
Capability state, evidence, and authority boundary.
| Capability | State | Evidence | Boundary |
|---|---|---|---|
| Create User | operational | Tenant user create endpoint exists and stores no credentials. | Runtime credential authority remains outside Admin Web. |
| Edit User | framework_ready | User metadata visibility and evidence shape are present. | No direct database or password mutation. |
| Activate User | operational | Tenant user activate endpoint exists. | Activation is metadata lifecycle, not session issuance. |
| Deactivate User | framework_ready | Lifecycle state is visible for administrative review. | Runtime deactivation enforcement remains future authority. |
| Lock User | framework_ready | Locked state is represented in operability model. | No runtime credential lock bypass. |
| Unlock User | framework_ready | Unlock workflow is represented as governed recovery approval. | No password/session authority implemented. |
| View User | operational | Tenant user metadata list is available without secrets. | No credentials, tokens, or sessions exposed. |
Role Management Foundation
Capability state, evidence, and authority boundary.
| Capability | State | Evidence | Boundary |
|---|---|---|---|
| Assign Role | framework_ready | Role assignment readiness is represented without enabling production assignment. | Runtime role authority remains disabled. |
| Remove Role | framework_ready | Role removal is represented as governed framework only. | No hidden permission mutation. |
| View Effective Roles | visibility_only | Role memberships are derived from safe user metadata. | No runtime enforcement claim. |
| View Tenant Membership | visibility_only | Users are grouped by tenant. | No cross-tenant mutation. |
| Role Audit | framework_ready | Audit/evidence requirement is explicit for future mutations. | Audit truth remains backend-owned. |
Identity Visibility
Users, roles, tenants, membership, status, and activation state are visible without runtime identity authority.
| Area | Capability | State | Evidence |
|---|---|---|---|
| Users | View users | Ready empty state | Tenant user metadata endpoint |
| Roles | View roles | Operational | Governance role records |
| Tenants | View tenants | Parity adapter fallback | Admin API tenants or Astitva-Web adapter |
| Membership | View tenant membership | Ready empty state | Tenant-scoped user rows |
| Status | View lifecycle status | Operational | Tenant lifecycle and user status rows |
| Activation State | View activation state | Operational | Tenant/user status without session issuance |
Customer Lifecycle
Customer registration, brand/domain registration, identity configuration, activation, and suspension readiness.
| Area | Capability | State | Evidence |
|---|---|---|---|
| Customer Registration | Register customer | Ready empty state | Customers API and view |
| Brand Registration | Register brand | Operational | Branding profile governance |
| Domain Registration | Register domain | Operational | Identity domain governance |
| Identity Configuration | Configure identity metadata | Framework ready | No runtime authority |
| Tenant Activation | Activate tenant | Framework ready | Lifecycle descriptors |
| Tenant Suspension | Suspend tenant | Framework ready | Second-person evidence required |
Password And Recovery Framework
Administrative workflow framework only. No password runtime, recovery token, MFA runtime, or session authority is implemented here.
| Workflow | State | Evidence | Runtime Boundary |
|---|---|---|---|
| Password Reset | Framework ready | Admin workflow can record reset intent and approval posture. | No password runtime implemented. |
| Invite User | Framework ready | Create user can create pending metadata without credentials. | No invitation secret or token issued. |
| Recovery Initiation | Framework ready | Recovery start is an administrative workflow row only. | No recovery token issued. |
| Recovery Audit | Framework ready | Evidence requirements are visible. | No audit truth ownership implemented. |
| Recovery Approval | Framework ready | Second-person review can be represented before runtime authority. | No bypass or hidden approval. |
Navasoochi Operability
Administrative readiness for Navasoochi leadership personas through user management, role assignment framework, and tenant visibility.
| Role | User Management | Role Assignment | Tenant Visibility |
|---|---|---|---|
| NAVASOOCHI_ADMIN | Supported as tenant-user metadata workflow | Framework ready; runtime role authority remains disabled | Supported through Navasoochi tenant/parity visibility |
| NAVASOOCHI_CEO | Supported as tenant-user metadata workflow | Framework ready; runtime role authority remains disabled | Supported through Navasoochi tenant/parity visibility |
| NAVASOOCHI_CMO | Supported as tenant-user metadata workflow | Framework ready; runtime role authority remains disabled | Supported through Navasoochi tenant/parity visibility |