{"success":true,"data":{"version":"audit-evidence-timeline-preview-v1","route":"/audit-evidence-timeline","mockApiRoute":"/api/mock/restaurant-os/audit-evidence-timeline","generatedFrom":"synthetic-local-examples-only","safetyBoundary":{"readsRealLogs":false,"connectsBackend":false,"connectsDatabase":false,"createsRealAuditRecords":false,"createsRealCustomerData":false,"containsRawSecrets":false,"includesRevealWorkflow":false,"includesProductionChecks":false,"includesStagingChecks":false,"includesDeploymentEvidence":false},"summary":{"eventCount":16,"denyBlockRedactCount":9,"passEvidenceCount":2,"auditRequiredCount":16,"uniqueEvidenceTypes":["approval-log","build-output","permission-decision","qa-marker","redaction-proof","safety-block","scope-guard"]},"events":[{"eventId":"audit-v1-permission-adapter-allow","timestampExample":"2026-06-10T09:00:00.000Z","sourceModule":"permission-adapter-preview","actorRole":"Owner","actorType":"owner","actionType":"read","targetResource":"local permission adapter preview matrix","decision":"allow","severity":"low","auditRequired":true,"evidenceType":"permission-decision","evidenceSummary":"Permission adapter allow event shows owner read access to a synthetic Restaurant SaaS settings preview.","correlationId":"corr-audit-timeline-001","redactionApplied":false,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"Typed local example only; no permission grant is created."},{"eventId":"audit-v1-permission-adapter-deny","timestampExample":"2026-06-10T09:01:00.000Z","sourceModule":"permission-adapter-preview","actorRole":"Cashier","actorType":"cashier","actionType":"deny","targetResource":"owner billing settings preview","decision":"deny","severity":"high","auditRequired":true,"evidenceType":"permission-decision","evidenceSummary":"Permission adapter deny event blocks cashier access to synthetic owner-only billing controls.","correlationId":"corr-audit-timeline-002","redactionApplied":true,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"Deny example is visual-only and does not modify auth, RBAC or backend middleware."},{"eventId":"audit-v1-owner-admin-matrix-visibility","timestampExample":"2026-06-10T09:02:00.000Z","sourceModule":"owner-admin-permission-matrix","actorRole":"Admin","actorType":"admin","actionType":"read","targetResource":"owner/admin permission matrix visibility preview","decision":"allow","severity":"medium","auditRequired":true,"evidenceType":"permission-decision","evidenceSummary":"Owner/Admin permission matrix visibility event proves synthetic module visibility is documented for admin review.","correlationId":"corr-audit-timeline-003","redactionApplied":false,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"Matrix is read-only and does not create real role assignments."},{"eventId":"audit-v1-same-branch-allow","timestampExample":"2026-06-10T09:03:00.000Z","sourceModule":"tenant-branch-scope-guard","actorRole":"Manager","actorType":"manager","actionType":"read","targetResource":"same-branch order queue preview","decision":"allow","severity":"low","auditRequired":true,"evidenceType":"scope-guard","evidenceSummary":"Tenant/branch same-branch allow event keeps manager reads inside matching tenantId, restaurantId and branchId.","correlationId":"corr-audit-timeline-004","redactionApplied":false,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"Static scope guard example only; no real orders or branch data are loaded."},{"eventId":"audit-v1-cross-branch-deny","timestampExample":"2026-06-10T09:04:00.000Z","sourceModule":"tenant-branch-scope-guard","actorRole":"Waiter","actorType":"waiter","actionType":"deny","targetResource":"different branch table assignment preview","decision":"deny","severity":"high","auditRequired":true,"evidenceType":"scope-guard","evidenceSummary":"Tenant/branch cross-branch deny event blocks waiter reads outside the synthetic assigned branch.","correlationId":"corr-audit-timeline-005","redactionApplied":true,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_cross_branch","safetyNotes":"Deny is local preview evidence and does not create real branch restrictions."},{"eventId":"audit-v1-cross-tenant-deny","timestampExample":"2026-06-10T09:05:00.000Z","sourceModule":"tenant-branch-scope-guard","actorRole":"Courier","actorType":"courier","actionType":"deny","targetResource":"different tenant delivery route preview","decision":"deny","severity":"critical","auditRequired":true,"evidenceType":"scope-guard","evidenceSummary":"Cross-tenant deny event prevents synthetic courier access to another tenant's delivery route metadata.","correlationId":"corr-audit-timeline-006","redactionApplied":true,"tenantId":"tenant_demo_foreign_blocked","restaurantId":"restaurant_demo_other","branchId":"branch_demo_other","safetyNotes":"No cross-tenant payload is read; the blocked record is a static example."},{"eventId":"audit-v1-sensitive-data-redaction","timestampExample":"2026-06-10T09:06:00.000Z","sourceModule":"sensitive-data-redaction","actorRole":"Admin","actorType":"admin","actionType":"redact","targetResource":"customer contact placeholder preview","decision":"redact","severity":"high","auditRequired":true,"evidenceType":"redaction-proof","evidenceSummary":"Sensitive data redaction event masks synthetic customer contact fields before display.","correlationId":"corr-audit-timeline-007","redactionApplied":true,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"Uses placeholder redacted values only; no real customer data exists in this preview."},{"eventId":"audit-v1-secret-reveal-denied","timestampExample":"2026-06-10T09:07:00.000Z","sourceModule":"sensitive-data-redaction","actorRole":"Owner","actorType":"owner","actionType":"block","targetResource":"runtime secret placeholder reveal","decision":"block","severity":"critical","auditRequired":true,"evidenceType":"safety-block","evidenceSummary":"Secret reveal denied event blocks any reveal workflow and keeps placeholder secret material fully hidden.","correlationId":"corr-audit-timeline-008","redactionApplied":true,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"No raw secrets, environment files or reveal actions are included."},{"eventId":"audit-v1-pos-manager-approval-required","timestampExample":"2026-06-10T09:08:00.000Z","sourceModule":"pos-manager-approval","actorRole":"Cashier","actorType":"cashier","actionType":"block","targetResource":"POS void order action preview","decision":"block","severity":"high","auditRequired":true,"evidenceType":"approval-log","evidenceSummary":"POS manager approval required event blocks a synthetic risky cashier action until manager approval is present.","correlationId":"corr-audit-timeline-009","redactionApplied":false,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"No real POS order, payment or approval record is created."},{"eventId":"audit-v1-pos-approval-audit-recorded","timestampExample":"2026-06-10T09:09:00.000Z","sourceModule":"pos-approval-audit","actorRole":"Manager","actorType":"manager","actionType":"approve","targetResource":"POS discount approval preview","decision":"allow","severity":"medium","auditRequired":true,"evidenceType":"approval-log","evidenceSummary":"POS approval audit recorded event shows synthetic approval evidence for a manager-approved discount action.","correlationId":"corr-audit-timeline-010","redactionApplied":false,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"Approval log is preview data only and is not persisted to a backend."},{"eventId":"audit-v1-public-receipt-redaction","timestampExample":"2026-06-10T09:10:00.000Z","sourceModule":"public-receipt-redaction","actorRole":"System Receipt Renderer","actorType":"system","actionType":"redact","targetResource":"public receipt payload preview","decision":"redact","severity":"high","auditRequired":true,"evidenceType":"redaction-proof","evidenceSummary":"Public receipt redaction event hides internal ids, provider targets and raw contact placeholders in customer-facing output.","correlationId":"corr-audit-timeline-011","redactionApplied":true,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"Synthetic receipt evidence only; no receipt link, provider send or customer record is generated."},{"eventId":"audit-v1-customer-consent-ledger","timestampExample":"2026-06-10T09:11:00.000Z","sourceModule":"customer-consent-ledger","actorRole":"System Consent Gate","actorType":"system","actionType":"read","targetResource":"customer consent ledger preview","decision":"allow","severity":"medium","auditRequired":true,"evidenceType":"permission-decision","evidenceSummary":"Customer consent ledger event confirms synthetic consent state is checked before notification send decisions.","correlationId":"corr-audit-timeline-012","redactionApplied":true,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"No real customer consent ledger entry is created or modified."},{"eventId":"audit-v1-provider-command-safety-blocked","timestampExample":"2026-06-10T09:12:00.000Z","sourceModule":"provider-command-safety","actorRole":"System Provider Guard","actorType":"system","actionType":"block","targetResource":"external provider command preview","decision":"block","severity":"critical","auditRequired":true,"evidenceType":"safety-block","evidenceSummary":"Provider command safety blocked event prevents synthetic provider command execution during QA preview.","correlationId":"corr-audit-timeline-013","redactionApplied":true,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"No provider API call, credential or outbound command is used."},{"eventId":"audit-v1-service-kill-switch","timestampExample":"2026-06-10T09:13:00.000Z","sourceModule":"service-kill-switch","actorRole":"Owner","actorType":"owner","actionType":"block","targetResource":"optional notification provider preview","decision":"block","severity":"high","auditRequired":true,"evidenceType":"safety-block","evidenceSummary":"Service kill-switch event shows an optional external provider remaining disabled while LAN authority continues.","correlationId":"corr-audit-timeline-014","redactionApplied":false,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"Local preview only; it does not toggle any real service."},{"eventId":"audit-v1-qa-script-pass-marker","timestampExample":"2026-06-10T09:14:00.000Z","sourceModule":"audit-evidence-timeline-qa-script","actorRole":"Local QA Script","actorType":"qa","actionType":"qa-pass","targetResource":"scripts/qa/run-mupza-audit-evidence-timeline-preview-v1.ps1","decision":"pass","severity":"low","auditRequired":true,"evidenceType":"qa-marker","evidenceSummary":"QA script PASS marker event records local validation coverage for files, fields, examples and safety exclusions.","correlationId":"corr-audit-timeline-015","redactionApplied":false,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"PASS evidence is local QA only and not deployment evidence."},{"eventId":"audit-v1-build-typecheck-lint-pass","timestampExample":"2026-06-10T09:15:00.000Z","sourceModule":"frontend-local-validation","actorRole":"Local Build Checker","actorType":"qa","actionType":"build-pass","targetResource":"npm run typecheck; npm run lint --if-present; npm run build","decision":"pass","severity":"low","auditRequired":true,"evidenceType":"build-output","evidenceSummary":"Build/typecheck/lint PASS event represents local validation output only, not staging or production deployment evidence.","correlationId":"corr-audit-timeline-016","redactionApplied":false,"tenantId":"tenant_demo_local_a","restaurantId":"restaurant_demo_pomegranate","branchId":"branch_demo_main","safetyNotes":"Local command evidence only; no deploy, staging, SSH or Docker command is part of this preview."}],"qaMarker":"RESULT: MUPZA_AUDIT_EVIDENCE_TIMELINE_PREVIEW_V1_PASS"}}