Impersonation & Hat-Switch Safeguards
Status
This concept is planned in the documentation information architecture but is not fully documented yet.
What This Page Will Explain
This page is expected to describe how Keymate enforces tenant pinning when an administrator impersonates another user, and how hat-switch protections prevent unauthorized context changes across tenant boundaries. It will cover the security controls that ensure impersonation sessions remain scoped to the target tenant.
Current State
The underlying capability may be:
- not fully exposed as a user-facing feature yet
- still under design or architectural review.
Why This Page Is a Placeholder
This placeholder preserves the planned documentation structure without documenting behavior that does not yet exist in a stable form.