Frontmatter
| id | 10000 |
| title | Hardened Identity Ingestion & Tenant Isolation |
| state | Closed |
| labels | enhancementai |
| assignees | tobiu |
| createdAt | Apr 14, 2026, 5:10 PM |
| updatedAt | Apr 20, 2026, 5:08 PM |
| githubUrl | https://github.com/neomjs/neo/issues/10000 |
| author | tobiu |
| commentsCount | 0 |
| parentIssue | 10016 |
| subIssues | [] |
| subIssuesCompleted | 0 |
| subIssuesTotal | 0 |
| blockedBy | [] |
| blocking | [x] 10017 Migration & Backward Compatibility for Multi-Tenant Schema, [ ] 10011 Native Edge Graph (SQLite): Row-Level Security & Tenant Isolation, [ ] 10010 Memory Core: Team vs Private Context Retrieval Flag |
| closedAt | Apr 20, 2026, 5:08 PM |
Hardened Identity Ingestion & Tenant Isolation
tobiu added parent issue #9999 on Apr 14, 2026, 5:11 PM
tobiu cross-referenced by #10016 on Apr 14, 2026, 6:43 PM
tobiu removed parent issue #9999 on Apr 14, 2026, 6:44 PM
tobiu added parent issue #10016 on Apr 14, 2026, 6:44 PM
tobiu marked this issue as blocking #10010 on Apr 14, 2026, 6:44 PM
tobiu marked this issue as blocking #10011 on Apr 14, 2026, 6:44 PM
tobiu marked this issue as blocking #10017 on Apr 14, 2026, 6:44 PM
tobiu cross-referenced by PR #10121 on Apr 20, 2026, 12:40 PM
tobiu cross-referenced by #9748 on Apr 20, 2026, 1:13 PM
tobiu cross-referenced by PR #10123 on Apr 20, 2026, 3:06 PM
tobiu assigned to @tobiu on Apr 20, 2026, 3:54 PM
tobiu cross-referenced by PR #10128 on Apr 20, 2026, 4:12 PM
tobiu cross-referenced by #10129 on Apr 20, 2026, 5:04 PM
tobiu closed this issue on Apr 20, 2026, 5:08 PM
tobiu cross-referenced by PR #10130 on Apr 20, 2026, 5:26 PM
tobiu cross-referenced by PR #10131 on Apr 20, 2026, 8:26 PM
tobiu cross-referenced by #10144 on Apr 21, 2026, 11:28 AM
tobiu cross-referenced by #10145 on Apr 21, 2026, 8:43 PM
tobiu cross-referenced by PR #10166 on Apr 21, 2026, 9:06 PM
tobiu cross-referenced by #10146 on Apr 21, 2026, 10:30 PM
Objective
Implement strict multi-tenant isolation within the Agent OS Memory Core to prevent identity spoofing and ensure data privacy.
Tasks
memory-core/config.template.mjs(Express Server) to extract identity strictly from trusted reverse-proxy HTTP headers (e.g.,x-auth-request-preferred-username)..envis never fully trusted for multi-user deployments.SessionService.mjsto inject the extracteduserIdinto ChromaDB metadata duringcollection.add()andcollection.upsert().where: { userId }filtering on all generic Memory Core retrieval queries (e.g.,get_session_memories,query_raw_memories).