Financial Intelligence Platform Backoffice

Scope

Financial Intelligence exposes a privileged read-only summary endpoint for the InfraNotes Backoffice:

GET /api/admin/platform/summary

The endpoint reports aggregate table availability and usage inventory for:

• Budget governance
• Analytics and anomaly detection
• Forecasting and cash flow
• Planning, goals, and working capital
• Suggestions
• Migration and event operability

It does not expose tenant financial amounts, tenant-scoped records, or user PII.

Security

The route is outside the tenant-scoped /api/v1/intelligence namespace and does not require X-Tenant-ID.

Access requires one of:

• platform_admin role
• platform_admin permission
• platform:admin permission
• platform:backoffice:read permission

Tenant admins and normal users are rejected.

Count Accuracy

Most Financial Intelligence business tables force PostgreSQL row-level security. The Backoffice endpoint does not bypass RLS. For forced-RLS tables it returns PostgreSQL catalog estimates from pg_class.reltuples and marks the metric as:

{
  "status": "degraded",
  "count_accuracy": "estimated"
}

Exact counts are only attempted for hardcoded allowlisted tables that do not force RLS.

Ownership Boundaries

IAM remains the source of truth for:

• Tenant registration approvals
• Package subscriptions
• Seat allocations and usage
• Entitlements
• Tenant lifecycle state

Financial Intelligence contributes module usage and data-health signals only. The Backoffice should combine this endpoint with IAM package and seat APIs before enforcing package limits.

Rollback

Rollback is code-only:

1. Remove PlatformSummaryHandler from RouterConfig.
2. Remove the /api/admin/platform/summary route mount.
3. Redeploy the previous service image.

No database migration or data rollback is required.