BaseCite Workspace Portal
Workspaces bind uploads, corrections, AI access, and audit metadata to one org_id. Cross-org tenant credentials are rejected.
Protected upload API
POST /api/v1/organizations/{org_id}/customer-uploads
{ "filename": "profile.txt", "visibility": "ai_readable_controlled", "payload": "...", "uploader_organization_type": "customer", "uploader_organization_id": "customer-org", "asserted_subject_org_id": "customer-org" }Workspace and credentials
Boundaries
- Upload acceptance is not truth verification.
- OriginCairn review is optional later reference only, not an upload prerequisite.
- No raw file public download, all-customer list, database dump, embeddings export, or bulk export.
- AI/MCP access is per-record, API-key controlled, rate-limited, audited, and canary-marked.