EVE SSO Account

EVE SSO Account Reviewer Workflow

Public proof for the controlled-login review path: account launch, permission consent, auth-flow, token health, owner acceptance, and data-rights packets are staged for review while OAuth starts, token exchanges, private EVE reads, session mutation, database writes, and account-control actions stay disabled.

Launch StateStaged Owner Review

Controlled login remains gated.

Account Gates5/8

0 gate(s) block account launch.

Source Packets5/6

Protected packets are linked as labels for owner review.

Owner Review3/5

0 owner checklist item(s) still block activation.

Pilot Gates8/10

0 controlled-login pilot gate(s) remain blocked.

Acceptance9/12

10 protected evidence field(s) still need owner results.

Owner DecisionRepeat Controlled Pilot

Public login remains hidden.

Consent Plans8/8

Feature-specific consent stays preview-only until the user asks for that feature.

Protected Exports14

JSON and Markdown owner packets stay admin-gated.

ready

EVE SSO launch gate review

owner-review-required; 3/5 launch checks ready.

JSONMarkdown
ready

EVE SSO activation packet

waiting-on-feature-flag; 6/8 owner checks ready.

JSONMarkdown
review

EVE auth flow review

gated-by-feature-flag; 5/6 route checks ready.

JSONMarkdown
ready

EVE permission review

8/8 consent preview plans ready.

JSONMarkdown
ready

EVE token-health review

0 token risk signals; 6/6 token checks ready.

JSONMarkdown
ready

Data rights launch

9/12 data-rights launch gates ready.

JSONMarkdown
ready

publicData first-login boundary

Public-safe evidence is ready for this account launch gate.

Evidence Route
/api/auth/eve/consent-preview?scopes=publicData&returnTo=/dashboard
review

Auth-flow handoff

Auth routes, state handling, callback guard, and account controls stay under protected review.

Evidence Route
/api/admin/eve/auth-flow
review

Launch-gate owner review

This gate is staged but still needs owner review before activation.

Evidence Route
/api/admin/eve/launch-gate
ready

Token-health handoff

Public-safe evidence is ready for this account launch gate.

Evidence Route
/api/admin/eve/token-health
ready

Account data-rights and controls

Public-safe evidence is ready for this account launch gate.

Evidence Route
/api/admin/data-rights/launch-packet
ready

Private-scope feature consent

Private and write/action scopes stay feature-specific and preview-only until a user asks for them.

Evidence Route
/api/admin/eve/permissions-review-packet
review

Owner acceptance run

This gate is staged but still needs owner review before activation.

Evidence Route
/api/admin/eve/activation-packet
ready

Rollback and live-smoke proof

Public-safe evidence is ready for this account launch gate.

Evidence Route
/api/health
No OAuth StartPublic review links never redirect visitors to CCP login.
No Token ExchangeToken exchange, refresh, revocation, and ciphertext stay protected.
No Private EVE ReadsPrivate character, corporation, wallet, asset, and location data stay gated.
No Database WritesAccount persistence waits for owner approval, auth review, and live smoke.
Reviewer LedOwner acceptance, rollback, and data-rights actions stay human-reviewed.

No-Secret EVE SSO Account Reviewer Rule

This protected account launch packet summarizes EVE SSO launch-gate status, auth-flow readiness, permission consent coverage, token-health counts, data-rights controls, owner review gates, proof targets, and safety booleans only. It does not expose client credential values, EVE tokens, token ciphertext, cookie values, session payloads, raw scopes, private EVE data, account payloads, provider credentials, raw logs, or separate-project account data, and it never starts OAuth, exchanges tokens, mutates sessions, contacts EVE/CCP, reads private EVE data, writes database rows, or runs account-control actions.

Launch ChecklistPilot ReadinessAcceptanceOwner DecisionTest PlanPermissionsData RightsProtected OpsReadiness JSON