rspace-online

Commit Graph

Author	SHA1	Message	Date
Jeff Emmett	91cb68a09f	feat: implement nested spaces architecture with permission cascade Spaces are now nestable — any space can embed references to other spaces via SpaceRef, with a permission cascade model (most-restrictive-wins at each nesting boundary). Every EncryptID registration auto-provisions a sovereign space at <username>.rspace.online with consent-based nesting controls. Key additions: - NestPolicy per space (open/members/approval/closed consent levels) - SpaceRef CRUD with allowlist/blocklist, permission ceiling enforcement - Approval flow for nest requests with admin review - Reverse lookup (nested-in) so owners see where their space appears - Source space admins can always revoke (sovereignty guarantee) - cascadePermissions() for multi-depth permission intersection - Client-side types for nested space rendering - Full spec at docs/SPACE-ARCHITECTURE.md Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-24 18:27:10 -08:00

Author

SHA1

Message

Date

Jeff Emmett

91cb68a09f

feat: implement nested spaces architecture with permission cascade

Spaces are now nestable — any space can embed references to other spaces
via SpaceRef, with a permission cascade model (most-restrictive-wins at
each nesting boundary). Every EncryptID registration auto-provisions a
sovereign space at <username>.rspace.online with consent-based nesting
controls.

Key additions:
- NestPolicy per space (open/members/approval/closed consent levels)
- SpaceRef CRUD with allowlist/blocklist, permission ceiling enforcement
- Approval flow for nest requests with admin review
- Reverse lookup (nested-in) so owners see where their space appears
- Source space admins can always revoke (sovereignty guarantee)
- cascadePermissions() for multi-depth permission intersection
- Client-side types for nested space rendering
- Full spec at docs/SPACE-ARCHITECTURE.md

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-24 18:27:10 -08:00

1 Commits