Skip to main content

Enterprise: Tenant-Scoped Admin

Problem Statement

Multi-tenant SaaS platforms require strict data isolation. Admin operations must be scoped to the current tenant, and agents must never access, modify, or even reference data from other tenants.

Why Human-Only Semantics Fail

  • Tenant context is stored in cookies/headers, not declared in the UI
  • Admin panels don't show which tenant they operate on
  • "Switch Organization" controls don't declare the scoping implications
  • Cross-tenant operations have identical UI to same-tenant operations

Why Scraping Fails Here

  • Tenant ID is in JWT tokens or session state, not the DOM
  • URL patterns may or may not include tenant identifiers
  • Admin UIs are identical across tenants — only the data differs
  • Cross-tenant access bugs are the #1 SaaS security vulnerability

How AXAG Eliminates Scraping

axag-scope="tenant" and axag-tenant-boundary="strict" declare that every operation is tenant-scoped. Generated tools include tenant context automatically.

Annotated UI Example

<!-- Tenant-Scoped User Management -->
<button
  axag-intent="admin.list_users"
  axag-entity="user"
  axag-action-type="read"
  axag-required-parameters='[]'
  axag-optional-parameters='["role_filter","status_filter","page","page_size"]'
  axag-scope="tenant"
  axag-tenant-boundary="strict"
  axag-preconditions='["caller must have tenant_admin role"]'
  axag-risk-level="none"
  axag-idempotent="true"
  axag-description="List all users in the current tenant"
>Manage Users</button>

<!-- Tenant Settings -->
<button
  axag-intent="admin.update_tenant_settings"
  axag-entity="tenant_settings"
  axag-action-type="write"
  axag-required-parameters='["setting_key","setting_value"]'
  axag-preconditions='["caller must have tenant_admin role"]'
  axag-postconditions='["setting updated","audit log entry created"]'
  axag-scope="tenant"
  axag-tenant-boundary="strict"
  axag-risk-level="high"
  axag-confirmation-required="true"
  axag-idempotent="true"
  axag-side-effects='["audit_log","setting_propagation"]'
  axag-description="Update a tenant-level configuration setting"
>Save Settings</button>

<!-- Tenant Data Export (Compliance) -->
<button
  axag-intent="admin.export_tenant_data"
  axag-entity="tenant_data"
  axag-action-type="read"
  axag-required-parameters='["export_type"]'
  axag-optional-parameters='["date_range","format"]'
  axag-preconditions='["caller must have tenant_admin role","export must comply with data retention policy"]'
  axag-postconditions='["export job created"]'
  axag-scope="tenant"
  axag-tenant-boundary="strict"
  axag-risk-level="high"
  axag-confirmation-required="true"
  axag-async="true"
  axag-description="Export all tenant data for compliance or migration purposes"
>Export Tenant Data</button>

Semantic Manifest Excerpt

{
  "tenant_boundary": "strict",
  "scope": "tenant",
  "actions": [
    {
      "intent": "admin.list_users",
      "entity": "user",
      "action_type": "read",
      "parameters": {
        "role_filter": { "type": "string", "required": false },
        "status_filter": { "type": "string", "required": false, "enum": ["active","inactive","suspended"] },
        "page": { "type": "integer", "required": false, "minimum": 1 },
        "page_size": { "type": "integer", "required": false, "minimum": 1, "maximum": 100 }
      },
      "preconditions": ["caller must have tenant_admin role"],
      "risk_level": "none",
      "idempotent": true
    },
    {
      "intent": "admin.update_tenant_settings",
      "entity": "tenant_settings",
      "action_type": "write",
      "parameters": {
        "setting_key": { "type": "string", "required": true },
        "setting_value": { "required": true }
      },
      "preconditions": ["caller must have tenant_admin role"],
      "postconditions": ["setting updated", "audit log entry created"],
      "risk_level": "high",
      "confirmation_required": true,
      "idempotent": true,
      "side_effects": ["audit_log", "setting_propagation"]
    },
    {
      "intent": "admin.export_tenant_data",
      "entity": "tenant_data",
      "action_type": "read",
      "async": true,
      "parameters": {
        "export_type": {
          "type": "string",
          "required": true,
          "enum": ["full","users_only","audit_logs","gdpr_request"]
        },
        "date_range": {
          "type": "object",
          "required": false,
          "properties": {
            "start": { "type": "string", "format": "date" },
            "end": { "type": "string", "format": "date" }
          }
        },
        "format": { "type": "string", "required": false, "enum": ["json","csv","zip"], "default": "zip" }
      },
      "preconditions": ["caller must have tenant_admin role", "export must comply with data retention policy"],
      "postconditions": ["export job created"],
      "risk_level": "high",
      "confirmation_required": true
    }
  ]
}

Constraints & Safety Notes

  • Strict tenant boundary: AXAG runtime MUST enforce that no operation accesses data outside the current tenant
  • All operations require tenant_admin role
  • Settings changes propagate to all tenant users and are logged to audit trail
  • Data export is async and may take minutes for large tenants
  • gdpr_request export type follows GDPR compliance requirements
  • Tenant boundary violations MUST be treated as critical security incidents