# STATUS — "you are here" handoff Each lane owns its own section. Update yours; don't touch others'. Keep it terse. Last full-repo update: 2026-06-18 (scaffold). ## Category 1 — Functional MCP Gateway Capability - Owner: ztaylor - Status: in progress (scaffold done; executing per `~/repos/docs/arcade-eval-plan.md`) - Last live-state check: — - Notes: cat-1 lane = this session. Per-user tests via `user_id` headers (real Entra SSO → cat 2). ## Category 2 — Delegated Authorization and Identity - Owner: — (security cluster: Dane / Chandu) - Status: not started (criteria stub seeded) - Notes: holds the Entra/Okta SSO login → identity-mapping test (a teammate can be User B). ## Category 3 — Tool-Level Access Control and Policy - Owner: trachakonda - Status: in progress — B1 (curr-state) + B5 (enforcement/bypass) DONE; B2/B3/B4 + per-user B1 pending dashboard + Contextual Access. - Last live-state check: 2026-06-18 (apps/arcade #2383 steady; dashboard 200). Noted: otel-collector + jaeger now deployed (cat-5) → trace store for B6. - Notes: Engine is the enforcement point (ungranted tool rejected there); one gateway = gateway-wide tool list (A==B), not per-user. Bypass: public-isolated for in-cluster worker (ClusterIP); tunnel custom servers = documented boundary. Blocked on dashboard for Contextual Access (input-block/output-redact) + per-user grants. ## Category 4 — Connector Coverage and Custom Server Development - Owner: — (adopt/operate cluster) - Status: not started (criteria stub seeded) ## Category 5 — Auditability and Observability - Owner: ztaylor - Status: not started (criteria stub seeded) - Notes: metrics → Grafana/Mimir (NOT ELK); engine OTLP currently dropped (no collector). See LIVE-POC. ## Category 6 — Security and Compliance - Owner: — (security cluster) - Status: not started (criteria stub seeded) ## Category 7 — Performance and Availability - Owner: — (platform cluster: Nawaz / SRE) - Status: not started (criteria stub seeded) ## Category 8 — Deployment and Operations - Owner: — (platform cluster) - Status: not started (criteria stub seeded) ## Category 9 — Developer Experience - Owner: ztaylor - Status: not started (criteria stub seeded) - Notes: stdio loop + Cloudflare-tunnel registration; shared `lib/mcp_server` is the fixture. ## Category 10 — Product Fit — Tools Catalog and Multi-Tenancy - Owner: — (adopt/operate cluster) - Status: not started (criteria stub seeded)