Skip to main content

brainos_core/
security.rs

1//! Cross-cutting security primitives shared by audit, confirm, sandbox,
2//! and orchestrator.
3//!
4//! `ActionTier` is an alias for [`identity::Tier`]: the same enum names
5//! both "the tier a principal holds" and "the tier an action requires",
6//! and the authorization check is a single `principal.tier >= action.tier`
7//! comparison. Keeping them as one type removes the manual `convert_tier`
8//! shims the codebase used to carry. The `ActionTier` name is preserved
9//! at this re-export site so action-side call sites read naturally.
10
11pub use identity::Tier as ActionTier;