add diagram sharing design and tla verification specs by fabracht · Pull Request #74 · LabOverWire/MQDB

fabracht · 2026-05-25T19:11:38Z

Summary

design doc for diagram sharing: named view/edit grants + public/link sharing + transitive cascade, holding across CRUD, child entities, and the live event stream under a mutually-untrusting-tenant model
corrects stale frontend-ownership.md claims (read is enforced; events are broadcast) verified against code
TLA+ specs verifying the authorization core; a current-behavior spec proves the event-leak and unprotected-children holes are real

DiagramSharing.tla — 12/12 invariants hold (26,244 states)
DiagramSharingCurrent.tla — same invariants violated on today's behavior (teeth check)
CascadeClosure.tla — cascade = exact reference closure, cycle-safe (1,792 states)
GrantLifecycle.tla — direct=set, cascade=max never downgrades, revoke clears (6/6)

fabracht added 3 commits May 25, 2026 11:59

add diagram sharing design and tla verification specs

5fa7755

model ownership transfer and anon completeness in sharing specs

213defd

Merge branch 'main' into diagram-sharing-design

7840ae3

fabracht merged commit 4386aff into main May 26, 2026
5 checks passed

fabracht deleted the diagram-sharing-design branch May 26, 2026 01:04