Reports and data rights
Reports Data Rights Owner Decision
This public mirror shows the owner decision lane for Reports/Data Rights account-save activation: accept owner-reviewed readiness, repeat protected owner smoke, or keep account-save actions rolled back and gated. It publishes only branch labels, counts, public route labels, and safety checks. Owner evidence values, report bodies, account payloads, tokens, provider secrets, database rows, webhooks, and private EVE data stay out of this page.
Account-save actions remain gated.
1 branch blocks account-save activation.
9 item(s) still need protected review.
10 owner evidence field(s) remain protected-review only.
Keep Gated
4 gate(s) still require owner review.
All smoke labels are public routes with no OAuth, provider call, or mutation.
Every target listed here is no OAuth, no mutation, and no private data.
No protected admin routes, owner evidence values, account payloads, or separate-project data are exposed.
Accept owner-reviewed account-save readiness
Account saves, exports, and database writes stay gated until protected owner evidence is complete.
- Public Route
- /reports-data-rights-reviewer
- Requirements
- 6
Repeat protected owner smoke
Repeat the protected owner smoke and keep account-save actions gated while missing evidence is collected.
- Public Route
- /reports-data-rights-reviewer#owner-evidence-checklist
- Requirements
- 3
Rollback or keep account-save actions gated
Rollback remains available if evidence, auth, database, webhook, or data-rights proof does not line up.
- Public Route
- /data-rights
- Requirements
- 4
Owner smoke evidence fields complete
Protected owner smoke evidence fields still need review.
Owner smoke outcome passed
This owner smoke check still needs protected evidence or owner review.
Owner activation decision ready
This owner smoke check still needs protected evidence or owner review.
Report-save result recorded
This owner smoke check still needs protected evidence or owner review.
Account-export result recorded
This owner smoke check still needs protected evidence or owner review.
Destructive controls recorded
This owner smoke check still needs protected evidence or owner review.
Database runtime recorded
This owner smoke check still needs protected evidence or owner review.
Webhook boundary recorded
This owner smoke check still needs protected evidence or owner review.
Side effects still off
This owner smoke check is ready from protected aggregate evidence.
Tracker row recorded
This owner smoke check still needs protected evidence or owner review.
Smoke timestamp
Evidence value must be recorded in protected owner review before activation.
Reviewer
Evidence value must be recorded in protected owner review before activation.
Tested Ops route
Evidence value must be recorded in protected owner review before activation.
Report-save result
Evidence value must be recorded in protected owner review before activation.
Account-export result
Evidence value must be recorded in protected owner review before activation.
Destructive-control result
Evidence value must be recorded in protected owner review before activation.
Database runtime result
Evidence value must be recorded in protected owner review before activation.
Webhook boundary result
Evidence value must be recorded in protected owner review before activation.
Rollback decision
Evidence value must be recorded in protected owner review before activation.
Tracker row
Evidence value must be recorded in protected owner review before activation.
Health JSON
- Public Route
- /api/health
- Safety
- No OAuth, mutation, or private data
Reports/Data Rights reviewer JSON
- Public Route
- /api/reports-data-rights/reviewer
- Safety
- No OAuth, mutation, or private data
Reports account readiness
- Public Route
- /api/reports-account/readiness
- Safety
- No OAuth, mutation, or private data
Data rights readiness
- Public Route
- /api/data-rights/readiness
- Safety
- No OAuth, mutation, or private data
Account export boundary
- Public Route
- /data-rights
- Safety
- No OAuth, mutation, or private data
Reports/Data Rights owner decision page
Shows public-safe account-save decision branches without protected packet bodies.
- Route
- /reports-data-rights-owner-decision
Reports/Data Rights owner decision JSON
Returns no-store branch, checklist, and safety counts only.
- Route
- /api/reports-data-rights/owner-decision-readiness
Reports/Data Rights reviewer
Shows reviewer lanes and owner evidence labels while values stay protected.
- Route
- /reports-data-rights-reviewer
Reports/Data Rights reviewer JSON
Exposes public-safe counts and proof links only.
- Route
- /api/reports-data-rights/reviewer
Reports account readiness
Keeps account-save readiness visible without account report payloads.
- Route
- /api/reports-account/readiness
Data rights readiness
Shows account control boundaries without export/delete/disconnect payloads.
- Route
- /api/data-rights/readiness
Reports export manifest
Lists public export formats without report bodies.
- Route
- /api/reports/export-manifest
Permissions
Shows feature-specific consent planning without starting OAuth.
- Route
- /permissions
Health JSON
Lets production smoke prove the owner-decision mirror stayed public-safe.
- Route
- /api/health
Public Boundary
Public Reports/Data Rights owner-decision readiness exposes decision branch labels, recommended branch state, owner smoke checklist counts, owner evidence field counts, account-save launch gate counts, data-rights control counts, live-smoke route labels, proof target outcomes, public links, and side-effect booleans only. It does not expose owner evidence values, report bodies, raw pasted inputs, account report payloads, account export payloads, delete payloads, EVE disconnect payloads, token values, token ciphertext, private EVE data, provider credentials, webhook secrets, raw logs, protected admin packet bodies, support messages, payment profile details, or separate-project account details, and it does not start OAuth, write database rows, call EVE or CCP, call providers, deliver webhooks, export account data, delete accounts, disconnect EVE, log out sessions, clear browser storage, or mutate data.