plan: super-domain RBAC + multi-tenancy v1 (4-level OGIT addressing + Foundry-parity enforcement)

Locks the 4-level addressing hierarchy (meta-anchors → super domain → OGIT
basin → within-basin slot) with explicit byte-sized DTOs. 6 bytes per row
(4-byte TenantId + 2-byte OwlIdentity) with single masked DataFusion
predicate enforcing tenant + super-domain + role + slot in one vector pass.

Promotes holograph::dntree::WellKnown ordinals to first-class business-named
SuperDomain enum (Healthcare/Science/Genetics/QuantumPhysics/TicketTool/
WorkOrderBilling/OSINT) with cross-walks to Foundry ObjectType / OWL upper
class / DOLCE marker / Wikidata QID. Wires nested role groups within super
domains plus per-tenant Chinese walls (cryptographic isolation via per-tenant
DEK as backstop to predicate filter).

Corrects an earlier sketch that proposed label-vs-metadata as sidecar tables
joined at query time — that was Neo4j-shaped. Right architecture is inline
per-family codebook addressed by the same 16-bit OwlIdentity. No join.

Locks 2-consumer ticket-system constraint: hiro-rs absorbs all 4 OSLC-*
namespaces with off-label fit acceptable (provenance lineage in FamilyEntry);
hubspot-rs is fresh basin (CRM codebook has zero overlap with Hiro IT-ops).

Tier A DTOs (D-SDR-1..5), Tier B TTL namespaces (D-SDR-6..7 on OGIT fork),
Tier C consumer crates (D-SDR-8..9), Tier D compliance + audit (D-SDR-10..11),
Tier E cross-tenant federation (D-SDR-12, Phase 2).

Builds on shipped substrate: SchemaPtr packed u32, OgitBridge +
BridgeFromRegistry, NamespaceRegistry::seed_defaults, DnPath compression
chain (ZeckBF17→Base17→CAM-PQ→scent), HhtlDEntry bit-packed-hierarchy
pattern, lance-graph-contract::cam CAM-PQ codec contract.

Foundry parity narrative: Palantir charges $1M+/yr for ObjectType-level
enforcement; we ship it as a single masked predicate at the super-domain
boundary, sub-microsecond hot path.

INTEGRATION_PLANS.md prepended per APPEND-ONLY governance.

Author: claude

.claude/board/INTEGRATION_PLANS.md

@@ -36,6 +36,19 @@
 
 ---
 
+## v1 — Super-Domain RBAC + Multi-Tenancy (authored 2026-05-13)
+
+**Author:** main thread (Opus 4.7 1M), session 2026-05-13 (branch `claude/lance-datafusion-integration-gv0BF`)
+**Status:** Active
+**Scope:** 4-level addressing hierarchy (meta-anchors → super domain → OGIT basin → within-basin slot) with explicit byte-sized DTOs, RBAC + multi-tenant Chinese walls wired onto the super-domain boundary. 6 bytes per row (4-byte `TenantId` + 2-byte `OwlIdentity`), inline per-family codebook with label+schema+verbs, single masked DataFusion predicate enforces tenant + super-domain + role + slot in one vector pass. Foundry-parity selling point at the enforcement surface, sub-microsecond hot path. Locks the 2-consumer ticket-system constraint (`hiro-rs` absorbs OSLC-* off-label, `hubspot-rs` is fresh basin) and collapses 4 OSLC-* namespaces into a single Hiro basin with provenance lineage.
+**Path:** `.claude/plans/super-domain-rbac-tenancy-v1.md`
+**Deliverables:** D-SDR-1..D-SDR-12 (Tier A DTOs / Tier B TTL namespaces / Tier C consumer crates / Tier D compliance + audit / Tier E cross-tenant federation Phase 2)
+**Substrate:** Builds on shipped `lance-graph-ontology::namespace::SchemaPtr`, `bridges::OgitBridge` + `BridgeFromRegistry`, `holograph::dntree::WellKnown` (promoted to `SuperDomain` enum), `lance-graph-callcenter::dn_path::DnPath` compression chain, `bgz-tensor::HhtlDEntry` bit-packed-hierarchy pattern, `lance-graph-contract::cam` CAM-PQ codec contract.
+**Cross-ref:** `palantir-parity-cascade-v2.md` (this spec adds the enforcement surface), `lance-graph-ontology-v5.md` (this spec sits above v5; v5 unchanged), `GLUE_LAYER_OGIT_TO_OWL_SPEC.md` (source for OWL property characteristics bitfield).
+**Open questions:** Foundry ObjectType cross-walk targets, Wikidata QID mappings, audit format choice (JSON Lines / CloudEvents / OTel), DEK rotation cadence, escalation UX, HPO/MONDO multi-member confirmation, slot 0xFF schema-only convention.
+
+---
+
 ## v1 — LF Integration Mapping (authored 2026-04-25)
 
 **Author:** main thread (Opus 4.7 1M), session 2026-04-25 (branch claude/scenario-world-facade)