stigmem-plugin-multi-tenant 0.1.0__tar.gz

stigmem_plugin_multi_tenant-0.1.0/.gitignore

@@ -0,0 +1,70 @@
+# Python
+__pycache__/
+*.py[cod]
+*$py.class
+*.egg-info/
+.eggs/
+dist/
+build/
+.venv/
+venv/
+.uv/
+.mypy_cache/
+.ruff_cache/
+.pytest_cache/
+htmlcov/
+.coverage
+coverage.xml
+*.cover
+coverage/
+
+# Node / pnpm
+node_modules/
+.next/
+.turbo/
+.jscpd/
+.pnpm-store/
+dist/
+*.tsbuildinfo
+apps/dashboard/coverage/
+adapters/mcp/coverage/
+sdks/stigmem-ts/coverage/
+
+# Environment
+.env
+.env.local
+.env.*.local
+
+# Release signing keys — public keys are attached to GitHub Releases only;
+# private keys must NEVER be committed (use offline storage).
+stigmem-release-signing-key.asc
+stigmem-release-signing-key*.asc
+*private*signing*key*.asc
+*secret*signing*key*.asc
+
+# IDE
+.vscode/
+.idea/
+*.swp
+*.swo
+
+# OS
+.DS_Store
+Thumbs.db
+
+# Local Codex project instructions
+AGENTS.md
+
+# Docker
+*.log
+
+# Stigmem runtime (DB and logs are runtime state, not source)
+data/*.db
+data/*.db-shm
+data/*.db-wal
+stigmem.db
+stigmem.db-shm
+stigmem.db-wal
+logs/
+# Eval results (CI-generated artifacts)
+eval/results/

stigmem_plugin_multi_tenant-0.1.0/PKG-INFO

@@ -0,0 +1,102 @@
+Metadata-Version: 2.4
+Name: stigmem-plugin-multi-tenant
+Version: 0.1.0
+Summary: Experimental multi-tenant isolation plugin for Stigmem.
+Project-URL: Homepage, https://github.com/eidetic-labs/stigmem
+Project-URL: Documentation, https://github.com/eidetic-labs/stigmem/tree/main/features/multi-tenant
+Project-URL: Repository, https://github.com/eidetic-labs/stigmem
+Project-URL: Issues, https://github.com/eidetic-labs/stigmem/issues
+Author-email: Eidetic Labs <oss@eidetic-labs.ai>
+License: Apache-2.0
+Keywords: authorization,multi-tenant,plugins,stigmem,tenant-isolation
+Classifier: Development Status :: 3 - Alpha
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: Apache Software License
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Topic :: Scientific/Engineering :: Artificial Intelligence
+Requires-Python: >=3.11
+Requires-Dist: pydantic<3,>=2
+Requires-Dist: stigmem-node<1.0.0,>=0.9.0a8
+Description-Content-Type: text/markdown
+
+# Stigmem Multi-Tenant Plugin
+
+Experimental multi-tenant scoping plugin for Stigmem.
+
+This package provides the `stigmem-plugin-multi-tenant` source package for
+alpha validation. It registers through the `stigmem.plugins` entry point group
+and is loaded by `stigmem-node` only when explicitly installed and configured by
+an operator.
+
+## Status
+
+Multi-tenant scoping remains experimental. Installing this package does not add
+shared-node readiness to the supported default surface. Default installs
+collapse callers into the `default` tenant unless the plugin is registered and
+`STIGMEM_MULTI_TENANT_ENABLED=true`.
+
+The package metadata is publication-shaped for the plugin readiness track, but
+registry publication remains on hold until dry-run evidence and maintainer
+clearance are recorded. See the feature record under `features/multi-tenant/`
+for the current status, evidence, and security notes.
+
+## Installation
+
+```bash
+pip install --pre stigmem-node==0.9.0a8 stigmem-plugin-multi-tenant==0.1.0
+```
+
+## Enable
+
+Set the plugin gate environment variable to opt in:
+
+```bash
+export STIGMEM_MULTI_TENANT_ENABLED=1
+```
+
+The default install is inert; multi-tenant hook behavior only activates when
+the package is installed, discovered through the `stigmem.plugins` entry point,
+and the operator enables the gate. Until then callers continue to collapse into
+the core `default` tenant boundary.
+
+## Disable
+
+Unset the plugin gate environment variable, or set it to any value other than
+`1`, `true`, `yes`, or `on`:
+
+```bash
+unset STIGMEM_MULTI_TENANT_ENABLED
+```
+
+The plugin returns to inert state at the next process start. No data migration
+is required; core tenant, scope, and audit isolation continues to hold.
+
+## Test
+
+From a Stigmem repository checkout with development dependencies installed:
+
+```bash
+uv run pytest node/tests/plugins/test_multi_tenant_plugin_scaffold.py \
+  node/tests/plugins/test_multi_tenant_plugin_validation.py
+```
+
+The package itself ships no separate test tree; upstream plugin validation
+lives in `node/tests/plugins/`.
+
+## Uninstall
+
+```bash
+pip uninstall stigmem-plugin-multi-tenant
+```
+
+Removing the package is sufficient. The gate environment variable becomes moot
+once the entry point is no longer discoverable.
+
+## Project Links
+
+- Repository: <https://github.com/eidetic-labs/stigmem>
+- Feature record: <https://github.com/eidetic-labs/stigmem/tree/main/features/multi-tenant>
+- Plugin source: <https://github.com/eidetic-labs/stigmem/tree/main/experimental/multi-tenant>
+- Issue tracker: <https://github.com/eidetic-labs/stigmem/issues>

stigmem_plugin_multi_tenant-0.1.0/README.md

@@ -0,0 +1,79 @@
+# Stigmem Multi-Tenant Plugin
+
+Experimental multi-tenant scoping plugin for Stigmem.
+
+This package provides the `stigmem-plugin-multi-tenant` source package for
+alpha validation. It registers through the `stigmem.plugins` entry point group
+and is loaded by `stigmem-node` only when explicitly installed and configured by
+an operator.
+
+## Status
+
+Multi-tenant scoping remains experimental. Installing this package does not add
+shared-node readiness to the supported default surface. Default installs
+collapse callers into the `default` tenant unless the plugin is registered and
+`STIGMEM_MULTI_TENANT_ENABLED=true`.
+
+The package metadata is publication-shaped for the plugin readiness track, but
+registry publication remains on hold until dry-run evidence and maintainer
+clearance are recorded. See the feature record under `features/multi-tenant/`
+for the current status, evidence, and security notes.
+
+## Installation
+
+```bash
+pip install --pre stigmem-node==0.9.0a8 stigmem-plugin-multi-tenant==0.1.0
+```
+
+## Enable
+
+Set the plugin gate environment variable to opt in:
+
+```bash
+export STIGMEM_MULTI_TENANT_ENABLED=1
+```
+
+The default install is inert; multi-tenant hook behavior only activates when
+the package is installed, discovered through the `stigmem.plugins` entry point,
+and the operator enables the gate. Until then callers continue to collapse into
+the core `default` tenant boundary.
+
+## Disable
+
+Unset the plugin gate environment variable, or set it to any value other than
+`1`, `true`, `yes`, or `on`:
+
+```bash
+unset STIGMEM_MULTI_TENANT_ENABLED
+```
+
+The plugin returns to inert state at the next process start. No data migration
+is required; core tenant, scope, and audit isolation continues to hold.
+
+## Test
+
+From a Stigmem repository checkout with development dependencies installed:
+
+```bash
+uv run pytest node/tests/plugins/test_multi_tenant_plugin_scaffold.py \
+  node/tests/plugins/test_multi_tenant_plugin_validation.py
+```
+
+The package itself ships no separate test tree; upstream plugin validation
+lives in `node/tests/plugins/`.
+
+## Uninstall
+
+```bash
+pip uninstall stigmem-plugin-multi-tenant
+```
+
+Removing the package is sufficient. The gate environment variable becomes moot
+once the entry point is no longer discoverable.
+
+## Project Links
+
+- Repository: <https://github.com/eidetic-labs/stigmem>
+- Feature record: <https://github.com/eidetic-labs/stigmem/tree/main/features/multi-tenant>
+- Plugin source: <https://github.com/eidetic-labs/stigmem/tree/main/experimental/multi-tenant>
+- Issue tracker: <https://github.com/eidetic-labs/stigmem/issues>

stigmem_plugin_multi_tenant-0.1.0/STATUS.md

@@ -0,0 +1,19 @@
+# Multi-Tenant Scoping Status
+
+This file is a compatibility pointer for existing
+`experimental/multi-tenant/` links.
+
+The canonical ADR-020 status record now lives at
+[`features/multi-tenant/status.md`](../../features/multi-tenant/status.md).
+
+Current summary:
+
+- Status: `active`
+- Stability: `experimental`
+- Default surface: `opt-in`
+- Implementation path: `experimental/multi-tenant/`
+- Package: `stigmem-plugin-multi-tenant`
+- Canonical spec: none currently assigned
+
+The implementation package remains here during transition. Product status,
+gates, history, and release-facing facts belong in the feature record.

stigmem_plugin_multi_tenant-0.1.0/concept.md

@@ -0,0 +1,14 @@
+# Multi-Tenant Scoping Concept
+
+This file is a compatibility pointer for existing
+`experimental/multi-tenant/concept.md` links.
+
+The canonical ADR-020 feature record now lives at
+[`features/multi-tenant/`](../../features/multi-tenant/).
+
+- Feature overview: [`features/multi-tenant/README.md`](../../features/multi-tenant/README.md)
+- Behavior spec: [`features/multi-tenant/spec.md`](../../features/multi-tenant/spec.md)
+- Evidence and coverage gaps: [`features/multi-tenant/evidence.md`](../../features/multi-tenant/evidence.md)
+- Security analysis: [`features/multi-tenant/security.md`](../../features/multi-tenant/security.md)
+
+Product concept detail belongs in the feature record.

stigmem_plugin_multi_tenant-0.1.0/pyproject.toml

@@ -0,0 +1,53 @@
+[project]
+name = "stigmem-plugin-multi-tenant"
+version = "0.1.0"
+description = "Experimental multi-tenant isolation plugin for Stigmem."
+readme = "README.md"
+requires-python = ">=3.11"
+license = { text = "Apache-2.0" }
+authors = [
+  { name = "Eidetic Labs", email = "oss@eidetic-labs.ai" },
+]
+keywords = ["stigmem", "plugins", "multi-tenant", "tenant-isolation", "authorization"]
+classifiers = [
+  "Development Status :: 3 - Alpha",
+  "Intended Audience :: Developers",
+  "License :: OSI Approved :: Apache Software License",
+  "Programming Language :: Python :: 3",
+  "Programming Language :: Python :: 3.11",
+  "Programming Language :: Python :: 3.12",
+  "Topic :: Scientific/Engineering :: Artificial Intelligence",
+]
+dependencies = [
+    "pydantic>=2,<3",
+    "stigmem-node>=0.9.0a8,<1.0.0",
+]
+
+[project.entry-points."stigmem.plugins"]
+multi-tenant = "stigmem_plugin_multi_tenant:plugin_manifest"
+
+[project.urls]
+Homepage = "https://github.com/eidetic-labs/stigmem"
+Documentation = "https://github.com/eidetic-labs/stigmem/tree/main/features/multi-tenant"
+Repository = "https://github.com/eidetic-labs/stigmem"
+Issues = "https://github.com/eidetic-labs/stigmem/issues"
+
+[build-system]
+requires = ["hatchling"]
+build-backend = "hatchling.build"
+
+[tool.hatch.build.targets.wheel]
+packages = ["src/stigmem_plugin_multi_tenant"]
+
+[tool.hatch.build.targets.wheel.sources]
+"src" = ""
+
+[tool.hatch.build.targets.sdist]
+include = [
+  "README.md",
+  "STATUS.md",
+  "security.md",
+  "spec.md",
+  "concept.md",
+  "src/stigmem_plugin_multi_tenant/**/*.py",
+]

stigmem_plugin_multi_tenant-0.1.0/security.md

@@ -0,0 +1,28 @@
+---
+feature: multi-tenant
+spec_id: Spec-X0-Multi-Tenant-Scoping
+status: Experimental
+applies_to: stigmem v0.9.0a8
+last_updated: 2026-05-24
+owned_risks: []
+contributed_risks:
+  - R-01
+  - R-02
+  - R-21
+---
+
+# Multi-Tenant Scoping Security
+
+This file is a compatibility pointer for existing
+`experimental/multi-tenant/` security links.
+
+The canonical ADR-020 security record now lives at
+[`features/multi-tenant/security.md`](../../features/multi-tenant/security.md).
+
+Current risk summary:
+
+- Owned risks: none.
+- Contributed risks: R-01, R-02, and R-21.
+
+Product security analysis, operator scenarios, conformance pointers, residual
+risk, and advisory history belong in the feature record.

stigmem_plugin_multi_tenant-0.1.0/spec.md

@@ -0,0 +1,122 @@
+---
+spec_id: Spec-X4-Multi-Tenant-Scoping
+version: 0.1.0-alpha.0
+status: Experimental
+applies_to: future experimental plugin line
+last_updated: 2026-05-24
+supersedes: features/multi-tenant/spec.md package projection
+depends_on:
+  - Spec-01-Fact-Model >= 0.1.0-alpha.0
+  - Spec-02-Scopes-and-ACL >= 0.1.0-alpha.0
+  - Spec-03-HTTP-API >= 0.1.0-alpha.0
+  - Spec-06-Capability-Tokens >= 0.1.0-alpha.0
+  - Spec-07-Recall-Pipeline >= 0.1.0-alpha.0
+  - Spec-09-Audit-Log >= 0.1.0-alpha.0
+title: Multi-Tenant Scoping
+sidebar_label: Multi-Tenant Scoping
+audience: Spec
+description: "Package projection for multi-tenant scoping semantics."
+stability: experimental
+since: 0.9.0a8
+---
+
+# Multi-Tenant Scoping Spec
+
+## Scope
+
+Multi-tenant scoping defines how a single Stigmem node can isolate facts,
+gardens, audit records, API keys, recall, and plugin hooks by `tenant_id` when
+the opt-in `stigmem-plugin-multi-tenant` package is registered and explicitly
+enabled.
+
+This feature has no Spec-X assignment. If it is reintroduced into the supported
+surface as protocol behavior, it must receive a numbered Spec-X per ADR-010 and
+pass ADR-008 gates.
+
+## Default Behavior
+
+Default installs resolve every caller into the single `default` tenant. This is
+true even if the stored API key carries a non-default tenant ID.
+
+Default behavior exists so the core node can keep storage compatibility columns
+without making multi-tenancy part of the default supported surface.
+Single-tenant deployments do not need the plugin.
+
+## Plugin-Enabled Behavior
+
+When the plugin is registered and `STIGMEM_MULTI_TENANT_ENABLED=true`, the
+`tenant_resolve` hook preserves the API key's tenant ID. The resolved tenant
+then flows through tenant-scoped HTTP, storage, recall, audit, observability,
+subscription, and plugin-hook paths that accept request tenant context.
+
+Existing node-level federation replication remains constrained to the `default`
+tenant in v0.9.0a8. Non-default tenant federation needs a dedicated design,
+conformance vectors, and risk disposition before it can be promoted.
+
+```text
+Bearer token -> Identity(entity_uri, permissions, tenant_id)
+                                                |
+                                                v
+                                  TenantContext(tenant_id)
+                                                |
+                                                v
+                         storage and hook paths filter by tenant_id
+```
+
+## Isolation Guarantees
+
+| Resource | Isolation mechanism |
+| --- | --- |
+| Facts | `tenant_id` column on `facts`; reads and writes filter by caller tenant. |
+| Gardens | Garden slug lookup is scoped by tenant; the same slug can exist in multiple tenants. |
+| Garden ACL | Membership checks resolve garden identity within the caller tenant. |
+| Audit log | Audit rows carry `tenant_id`; audit queries are tenant-scoped. |
+| API keys | Each key belongs to exactly one tenant. |
+| Federation | Existing node-level pull exports only `default` tenant facts; tenant-aware non-default federation is deferred. |
+| Plugin hooks | Hook payloads receive tenant context through the plugin framework. |
+
+## Non-Isolated Node Surfaces
+
+The following surfaces are node-level, not tenant-level:
+
+- environment settings;
+- health and well-known endpoints;
+- node identity and signing keys;
+- process resources such as CPU, memory, disk, and network capacity.
+
+Operators who host independent tenants on one node must pair tenant isolation
+with transport authentication, per-tenant quotas, audit review, and operational
+resource controls.
+
+## API Key Provisioning
+
+Tenant ID is assigned when an API key is created. Keys created without an
+explicit `tenant_id` use `default`.
+
+```json
+{
+  "entity_uri": "service:payments",
+  "permissions": ["read", "write"],
+  "tenant_id": "acme-corp"
+}
+```
+
+`GET /v1/me` returns the resolved identity and tenant ID. With the plugin
+disabled, non-default keys resolve to `default`; with the plugin enabled, the
+stored non-default tenant is preserved.
+
+## Tenant Naming
+
+`tenant_id` is an opaque string. Operators should use a stable URL-safe slug
+such as `acme-corp`, `team-ml`, or `staging`. The node does not maintain a
+separate tenant registry; tenant identity is implicit in key assignment.
+
+## Non-Goals
+
+- This feature does not make multi-tenancy part of the default supported
+  surface.
+- This feature does not publish a signed plugin artifact.
+- This feature does not define per-tenant billing policy.
+- This feature does not provide tenant-aware non-default federation.
+- This feature does not provide process-level resource isolation between
+  tenants.

stigmem_plugin_multi_tenant-0.1.0/src/stigmem_plugin_multi_tenant/__init__.py

@@ -0,0 +1,12 @@
+"""Experimental multi-tenant plugin."""
+
+from __future__ import annotations
+
+from .config import MultiTenantConfig
+from .manifest import PLUGIN_NAME, plugin_manifest
+
+__all__ = [
+    "PLUGIN_NAME",
+    "MultiTenantConfig",
+    "plugin_manifest",
+]

stigmem_plugin_multi_tenant-0.1.0/src/stigmem_plugin_multi_tenant/config.py

@@ -0,0 +1,28 @@
+"""Configuration schema for the multi-tenant plugin."""
+
+from __future__ import annotations
+
+import os
+from collections.abc import Mapping
+
+from pydantic import BaseModel
+
+
+class MultiTenantConfig(BaseModel):
+    """Operator-controlled gate for non-default tenant resolution."""
+
+    enabled: bool = False
+
+
+def load_config_from_env(environ: Mapping[str, str] | None = None) -> MultiTenantConfig:
+    """Load multi-tenant plugin gates from environment variables."""
+
+    env = environ if environ is not None else os.environ
+    return MultiTenantConfig(
+        enabled=_env_bool(env, "STIGMEM_MULTI_TENANT_ENABLED"),
+    )
+
+
+def _env_bool(env: Mapping[str, str], name: str) -> bool:
+    raw = env.get(name, "")
+    return raw.strip().lower() in {"1", "true", "yes", "on"}

stigmem_plugin_multi_tenant-0.1.0/src/stigmem_plugin_multi_tenant/handlers.py

@@ -0,0 +1,127 @@
+"""Hook handlers for the multi-tenant plugin."""
+
+from __future__ import annotations
+
+from typing import Any, TypeVar
+
+from pydantic import ValidationError
+from stigmem_node.plugins import (
+    Allow,
+    Deny,
+    PluginContext,
+    PluginHealth,
+    PluginHealthStatus,
+    TenantContext,
+)
+from stigmem_node.tenant import TenantIdError, validate_tenant_id
+
+from .config import load_config_from_env
+
+T = TypeVar("T")
+
+
+def config_validate(_ctx: PluginContext, **_: Any) -> Allow | Deny:
+    """Validate operator gates before the plugin is registered."""
+
+    try:
+        load_config_from_env()
+    except ValidationError as exc:
+        return Deny(f"invalid multi-tenant plugin config: {exc}")
+    return Allow()
+
+
+def tenant_resolve(_ctx: PluginContext, value: TenantContext, **kwargs: Any) -> TenantContext:
+    """Resolve non-default tenants only when the plugin is explicitly enabled.
+
+    When ``STIGMEM_MULTI_TENANT_ENABLED`` is false, this hook returns the
+    inbound context unchanged. When enabled, it validates and normalizes the
+    candidate tenant ID before promoting the context to ``resolved``.
+    """
+
+    config = load_config_from_env()
+    if not config.enabled:
+        return value
+
+    identity = kwargs.get("identity")
+    tenant_id = getattr(identity, "tenant_id", None)
+    if not tenant_id:
+        tenant_id = value.metadata.get("source_tenant_id")
+    if not tenant_id:
+        return value
+    try:
+        normalized_tenant_id = validate_tenant_id(str(tenant_id))
+    except TenantIdError:
+        return value
+    return TenantContext(
+        tenant_id=normalized_tenant_id,
+        metadata={
+            **value.metadata,
+            "tenant_context_source": "resolved",
+            "resolved_by": "stigmem-plugin-multi-tenant",
+        },
+    )
+
+
+def pre_assert_authorize(_ctx: PluginContext, **_: Any) -> Allow:
+    """Acknowledge core-enforced tenant write authorization.
+
+    Behavior is identical regardless of ``STIGMEM_MULTI_TENANT_ENABLED``:
+    this hook always returns ``Allow()`` because tenant isolation is enforced by
+    core write paths. The plugin contributes tenant resolution, not write
+    authorization.
+    """
+
+    return Allow()
+
+
+def pre_recall_authorize(_ctx: PluginContext, **_: Any) -> Allow:
+    """Acknowledge core-enforced tenant recall authorization.
+
+    Behavior is identical regardless of ``STIGMEM_MULTI_TENANT_ENABLED``:
+    this hook always returns ``Allow()`` because tenant isolation is enforced by
+    core recall paths. The plugin contributes tenant resolution, not recall
+    authorization.
+    """
+
+    return Allow()
+
+
+def recall_filter(_ctx: PluginContext, value: T, **_: Any) -> T:
+    """Return recall/query results unchanged after core tenant filtering.
+
+    With the gate disabled or enabled, this hook is a pass-through because core
+    recall/query SQL already filters by the resolved request tenant.
+    """
+
+    return value
+
+
+def federation_outbound_filter(_ctx: PluginContext, value: T, **_: Any) -> T:
+    """Return outbound federation batches unchanged after core tenant filtering.
+
+    With the gate disabled or enabled, this hook is a pass-through because
+    v0.9.0a8 node-level federation is pinned to the default tenant by core.
+    """
+
+    return value
+
+
+def migration_register(_ctx: PluginContext, value: T, **_: Any) -> T:
+    """Return core/plugin migrations unchanged.
+
+    With the gate disabled or enabled, this hook is a pass-through.
+    Tenant columns remain part of the core storage compatibility schema so
+    existing single-tenant data keeps the `default` partition. The plugin owns
+    non-default tenant resolution and validation, not the storage columns.
+    """
+
+    return value
+
+
+def health_check(_ctx: PluginContext) -> PluginHealth:
+    """Report scaffold health for registry lifecycle tests."""
+
+    return PluginHealth(
+        status=PluginHealthStatus.HEALTHY,
+        message="multi-tenant plugin scaffold registered",
+    )

stigmem_plugin_multi_tenant-0.1.0/src/stigmem_plugin_multi_tenant/manifest.py

@@ -0,0 +1,48 @@
+"""Plugin manifest factory for multi-tenant isolation."""
+
+from __future__ import annotations
+
+from stigmem_node.plugins import PluginManifest
+
+from . import handlers
+from .config import MultiTenantConfig
+
+PLUGIN_NAME = "stigmem-plugin-multi-tenant"
+PLUGIN_VERSION = "0.1.0"
+REQUIRES_STIGMEM = ">=0.9.0a3"
+
+
+def plugin_manifest() -> PluginManifest:
+    """Return the entry-point manifest consumed by ``stigmem.plugins`` discovery."""
+
+    return PluginManifest(
+        name=PLUGIN_NAME,
+        version=PLUGIN_VERSION,
+        requires_stigmem=REQUIRES_STIGMEM,
+        capabilities=frozenset(
+            {
+                "facts.read",
+                "facts.write",
+                "recall.read",
+                "federation.read",
+                "federation.write",
+                "identity.read",
+                "tenant.read",
+                "tenant.write",
+                "audit.emit",
+                "config.read",
+            }
+        ),
+        hooks={
+            "config_validate": handlers.config_validate,
+            "tenant_resolve": handlers.tenant_resolve,
+            "pre_assert_authorize": handlers.pre_assert_authorize,
+            "pre_recall_authorize": handlers.pre_recall_authorize,
+            "recall_filter": handlers.recall_filter,
+            "federation_outbound_filter": handlers.federation_outbound_filter,
+            "migration_register": handlers.migration_register,
+        },
+        config_schema=MultiTenantConfig,
+        health_check=handlers.health_check,
+        async_safe=True,
+    )