Workspace isolation#
Every piece of data in LumenFlow is scoped to a workspace. Access controls are enforced at multiple layers to ensure no data crosses workspace boundaries — even in the event of an application bug.
Authentication#
When you sign in, LumenFlow creates a secure session tied to your identity and workspace. This session determines what data you can access and what actions you can take.
Role enforcement#
Roles are checked before any data operation:
- You authenticate and receive a secure session
- Your session includes your workspace and role
- Every request validates your permissions before processing
- Database-level enforcement provides a second layer of protection
API key scoping#
Workspace API tokens are scoped to specific capabilities:
| Scope | What it controls |
|---|---|
| Chat | Conversations and messages |
| Proposals | Proposals and actions |
| Audit | Audit entries (read-only) |
| Admin | Workspace settings and team members |
Session management#
- Sessions expire after 7 days of inactivity
- Active sessions can be viewed in Settings → Security
- Individual sessions can be revoked immediately
- "Sign out everywhere" terminates all active sessions
info Access control is enforced at the database level. Even if application code has a bug, the database prevents cross-workspace data access.