DOCUMENTATION HUB·LEVEL_2

Knowledge Base — Ironframe GRC

REF_PATH: support/knowledge-baseSOURCE: APP_DOCUMENTS_DB

Knowledge Base — Ironframe GRC

Central index of support articles. Link users to FAQ for self-service first.

Getting started

ArticleLink
First login and tenant switcherOnboarding
Command Center tourUser Guide
Release highlightsRelease Notes

Authentication and access

TopicDetail
Supabase loginRequired for tenant routes; middleware refreshes session
Tenant cookieironframe-tenant — UUID, 180-day max-age, SameSite=Lax
Ironguard sessionClient effective tenant; must align with cookie on fetch
Global vs scopedGlobal Command Center = aggregate; exports need scoped tenant

Dashboard and UI

TopicDetail
Blank panels after tenant switchFixed in 42b9b56b — refetch without clearing LKG; refresh if persistent
Handshake phasesidle → verified; shadow plane may auto-verify
Active Risks vs PipelinePipeline = intake; Active = confirmed triage
Audit Intelligence filtersSIMULATION and GRCBOT hidden from sidebar

Sustainability (Ironbloom / Ironwatch)

TopicDetail
Carbon pulse poll interval60 seconds via SWR
LKG path/api/sustainability/pulse-lkg
Fallback envIRONWATCH_SUSTAINABILITY_FALLBACK_ENABLED=true
Zone rosterMedshield US-NEIS, Vaultbank US-NY, Gridcore US-CO, Defense US-MIDA-PJM
Rogue zone aliasesUS-GD → US-CO (Gridcore)
Stale data modeIronwatch 4h degraded → maturity penalty + lockdown paths

Exports and evidence

TopicDetail
Analyst exports/dashboard/exports
API export/api/ironquery/export, /api/internal/ironquery/export
WORM sealEpic 12 — attestation blocks shredder
Forensic manifestCarbon pulse → Forensic button → evidence API

Operations and cron

Cron routePurpose
/api/internal/cron/ironwatch-api-heartbeatElectricity Maps ping
/api/internal/cron/gridcore-rate-pollUtility rate poll
/api/internal/cron/health-posture-triageTelemetry triage
/api/internal/cron/ironscribe-daily-auditDaily audit synthesis
/api/cron/narrateGovernance Frame triad snapshot → board narrativeCache (Vercel 30 3 * * * UTC; local task 03:30)

Auth: Authorization: Bearer $IRONFRAME_CRON_SECRET or internal gates secret.

RunbookPurpose
Nightly Cron RunbookWindows Documentation Engine (03:00 Task Scheduler, Cursor CLI, glossary) vs API narrate (Core/Vercel); env vars, log paths, success criteria

Local Windows tasks: \Ironframe Daily Documentation Engine (03:00) + \Ironframe GRC Narrative Hydration (03:30) — register via scripts\register-nightly-cron-tasks.ps1 (see runbook).

Engineering references

DocAudience
TAS.mdArchitecture authority
testing.mdCI matrices
API DocumentationIntegrators
Security & ComplianceAudit/security

Related documents