Authentication

Stub.

For v1: service-account tokens. Each agent or service gets a static bearer token mapped 1:1 to a graph entity. Mutations are recorded against that entity in the audit log.

Future: signed requests (Ed25519). Each agent signs its requests with a private key whose public key is registered as a property of the entity. This is federation-friendly — a remote node can verify writes without holding a shared secret with the originating node.

⚙️AI-draftedDrafted by AI, reviewed by a human but not substantially rewritten. · model: claude-opus-4-7 · drafted 2026-04-29 What does this mean? →