Keeps this page in sync as the body changes. Pause it any time for a quieter view.
Path /specs/identity-driven-onboarding-tofu
Last refresh never
Identity-Driven Onboarding: Trust-on-First-Use (TOFU) MVP
inventory_source local | spec_api /api/spec-registry/identity-driven-onboarding-tofu | registry_updated 2026-04-09T03:10:08.928730Z
potential_value 0.00 | actual_value 1.00 | value_gap 0.00
estimated_cost 0.00 | actual_cost 1.00 | cost_gap 1.00
estimated_roi 0.00 | actual_roi 1.00
Missing contributor linkage. Submit a change request with contributor attribution.
Open process view for this spec
task_ids -
branches -
source_files specs/identity-driven-onboarding-tofu.md, specs/investment-ux-stake-cc-on-ideas.md
evidence_refs -
Open implementation view for this spec
implementation_refs spec-registry:identity-driven-onboarding-tofu, spec-registry:investment-ux-stake-cc-on-ideas
lineage_ids -
public_endpoints -
summary Enable zero-friction contributor onboarding for the MVP using trust-on-first-use (TOFU),
process_summary POST /api/onboarding/register accepts handle and returns session_token with trust_level tofu; Handle must match [a-z0-9_-]{3,40} or return 422; Duplicate handle returns 409 with handle_taken detail; GET /api/onboarding/session validates Bearer token or returns 401; POST /api/onboarding/upgrade returns 501 stub until OAuth spec
pseudocode_summary -
implementation_summary api/app/services/onboarding_service.py (register(), claim_handle()); api/app/routers/onboarding.py (onboarding endpoints)