Access is two questions asked everywhere: who are you, and what have you earned the right to reach? The enclave answers the first from its directories — one for the real-identity workplace, one for the volunteer commons — fronted by single sign-on, so a person proves themselves once. The second is a matter of role: every account sits somewhere on a ladder that climbs from ordinary user to governor, and where you stand on it decides what you can see and do. Roles are earned, not assumed.

Cutting across the roles is a single dividing line — the hemisphere split between owner-only and shared grounds. Owner-only space holds the foundation and the controls; shared grounds are open to everyone who belongs. Every zone is measured against that line. A guiding rule follows from it: a directory lives in the most-protected zone and authenticates outward from there, never the reverse. The identity packages themselves are in Software, and the zones they govern are in Ground › Zones.

Has anything touched?

If reading this made you want to argue with it, extend it, or notice what's missing, that's the signal to show up.

:/back-to-top