Tenant boundary

Alexander Grading

Organization v2 staging API

siteOS creates the workspace session after provider identity is verified. Workspace membership, reports, roles, and tenant boundaries stay owned by siteOS.

Start a workspace

Standalone ready

Workspace name Account type Owner email

This path becomes its own tenant boundary first. A one-person account and a large company account use the same isolation model.

Before live submit

DB healthWait for v2 Railway DB health marker.
Seed proofCreate a synthetic owner and tenant only in v2 staging.

Personal reports

Standalone value

Weekly report exportPersonal hours, jobs, and task notes stay available without an organization.
Daily logCapture project time, tasks, and field notes for the personal workspace.
Equipment notesTrack maintenance observations before any ERP connector exists.
Personal notesPrivate workspace notes remain separate from future organization membership.

Use an access code

Organization invite

Access code Work email

This path joins an existing tenant created in Admin v2. The server decides membership, role, and available tools.

Guardrails

No role claimDefault to employee view until membership is proven.
Tenant checkAccess codes must resolve inside one organization only.

Sign in

Existing workspace

Workspace Email

Returning members sign in to one selected workspace boundary. The backend session decides employee or Admin access after membership is proven.

Session rules

Tenant scopedSession claims must include one organization before tools unlock.
Default denyMissing role still opens the employee surface only.

Demo workspace

Review tenant

The demo path is for App Review and sales-safe testing. It must use synthetic data and never mirror production people, payroll, or Foundation records.

Demo readiness

Synthetic dataSeeded jobs, announcements, and employees only.
Offline shellInstallable route still opens without network.

Employee workspace selected. SiteOS-platform-staging technical ref hmnncwbepzkpsscabboo

Clock status Ready

Today 0.0 hrs

PTO --

Clock

Static workspaces loading No queued clock actions No reconcile run yet

Job Cost code Equipment

Announcements

Safety stand-downTenant-scoped sample item
Schedule updateVisible only in selected workspace

v1 PWA route map

0 routes mapped

Copied from the working v1 PWA route inventory, then held behind v2 tenant, staging API, and default-deny guardrails.

Employee

Home
Time
Schedule
Pay
PTO
Announcements
Tasks
Resources
Foreman
Maintenance
Onboarding
Me

Admin

Today
Timesheets
Employees
Candidates
Jobs
Schedule
PTO
Reviews
Announcements
Tasks
Maintenance
Equipment
Reports
Documents
Organizations
Admins
Audit

Approvals

Item	Status	Tenant
Time entry	Pending	AG
Bug report	Open	AG

Workspace controls

Employee access enabled Admin approvals enabled Demo-only mode

Organization control plane

ERP optional

Create workspaceAdmin owns organization setup, owner invite, and workspace status.
Access-code joinMembership is granted through siteOS, then roles unlock tenant tools.
Existing workspaceReturning members resolve one organization boundary before Admin tools appear.
ERP optionalManual, hybrid, or Foundation-connected modes are tenant settings, not identity authorities.

Employee view selected

A session without an admin role lands on the employee surface by default. Admin tools stay hidden until the server grants an admin role inside the selected workspace.