Resolving locale, route permissions, and workspace projection.
Current scope: Guest
Category: 10_normative | Version: v1.0.0
Owner: DOCUMENT_CUSTODIAN | Review cycle: 90 days
Approval authority: GOVERNANCE_ADMIN
Documentation portal is read-only. Editing and mutation endpoints are disabled.
Kvary platform is originally created in Georgian. Where a Georgian version exists, Georgian is authoritative for platform UI, documentation, and legal interpretation.
Translations into other languages are provided for convenience. Some records may originate in other languages and carry their own source or legal locale for a specific flow, but where a Georgian version is available, the Georgian version prevails for platform-level wording and interpretation.
Metadata incomplete: Document ID, Version, Status, Owner Role, Last Review Date, Next Review Date, Change Log
This document defines the smallest truthful shared-shell contract KES still depends on after host extraction and compatibility-layer removal.
It is not a target-state fantasy. It reflects current code truth.
Current gateway surface:
Current seam:
KES_ORCHESTRATOR_SERVICE_URL ?? TENDERS_SERVICE_URLClassification:
Why:
Current runtime-local auth ingress:
buildRequireServiceAuth(...) in auth.tsCurrent identity resolution:
/auth/me resolution from svc-authClassification:
Why:
Current expectations:
Classification:
Why:
Current helpers:
ensureThirdPartyKycBoundary(...)verifyIncomingSignatureGate(...)Current location:
Classification:
Why:
Current shared parser helpers:
parsePositiveIntparseOptionalIntparseOptionalStringparseOptionalUpperclampPositiveIntClassification:
Why:
svc-kes, but they remain part of a broader shared-shell contract because they preserve existing gateway/auth semanticsCurrent shared infra:
Classification:
Why:
/auth/me