Inventory quartet and initial leases

2025-12-17 15:54:20 +00:00
parent 44edf6734b
commit 901444a6d5
21 changed files with 291 additions and 0 deletions
--- a/20-identity/templates/lease.md
+++ b/20-identity/templates/lease.md
@@ -0,0 +1,24 @@
+# Lease: <device-or-system>
+
+## Grant
+
+- Lease type:
+- Issued to role:
+- Issued at (UTC):
+- Expires at (UTC):
+- Revoked at (UTC):
+
+## Scope
+
+- What this lease permits:
+- What it explicitly forbids:
+
+## Rotation / revocation
+
+- Revocation procedure:
+- Post-revoke verification:
+
+## Evidence
+
+What you record when granting/rotating/revoking (timestamps, IDs, logs).
+