BrandGym
Studio
Credentials
2
Ops Workspace
E

Credentials & Sessions

runtime

Real operator view for session health, vault bindings, re-auth recovery, MFA waits, rotation pressure and scope-aware credential usage across the BrandGym runtime.

Seed RuntimeSeed Runtime

Bindings

4

provider contexts tracked

Needs Re-Auth

1

session recovery queue

MFA Required

1

operator assist needed

High Risk

2

guarded usage

Credential health queue

Google Business operator sessionneeds-reauthsession-bound
google · operator · last verified 2026-03-07T17:24:00+01:00
high
risk class
Usable for
browser review runs · GBP edits · listing evidence capture
Next action
Trigger re-auth flow and park follow-up browser runs in a waiting-for-session lane.
Open events
2 active credential events
Current blocker
No first-class guided re-auth lane exists yet in credentials console.
Credential events
Session renewal required
open
reauth · Existing concept is documented, but the actual renewal workflow still needs UI and persistence.
Potential MFA assist after re-auth
scheduled
mfa · Credentials console should hand off directly into operator assist when Google prompts for MFA.
Runtime linkage
Runtime states seeded
1 matching runtime status records
Waiting browser impact
1 waiting browser runs currently depend on this provider context
Approval pressure
0 related approvals in queue or scope adjacency
Primary domain / DNS accesshealthyvault-bound
cloudflare · jimmy · last verified 2026-03-07T17:16:00+01:00
medium
risk class
Usable for
DNS changes · domain verification · routing checks
Next action
Keep audit visibility and rotation reminder wiring in place.
Open events
0 active credential events
Credential events
Vault binding recorded
resolved
audit · The binding exists conceptually and can be reflected as healthy in the operator view.
Runtime linkage
Runtime states seeded
1 matching runtime status records
Waiting browser impact
1 waiting browser runs currently depend on this provider context
Approval pressure
0 related approvals in queue or scope adjacency
Meta Ads operator accessmfa-requiredoperator-assisted
meta · operator · last verified 2026-03-07T17:20:00+01:00
critical
risk class
Usable for
campaign edits · audience checks · account audits
Next action
Keep Meta work behind approval + operator-assisted takeover until MFA lane and risk controls are live.
Open events
2 active credential events
Current blocker
High-risk scope cannot proceed until takeover and approval flow are both explicit.
Credential events
High-risk provider action still gated
blocked
policy · Policy allows only controlled operator-assisted use for now.
MFA checkpoint required
open
mfa · Credentials console should make takeover and checkpoint recovery obvious.
Runtime linkage
Runtime states seeded
0 matching runtime status records
Waiting browser impact
1 waiting browser runs currently depend on this provider context
Approval pressure
1 related approvals in queue or scope adjacency
Mailbox sending identityexpiringvault-bound
mailbox · grace · last verified 2026-03-07T16:58:00+01:00
medium
risk class
Usable for
draft send approvals · reply workflows · outbound notifications
Next action
Prepare rotation reminder before delivery-critical flows depend on this identity.
Open events
1 active credential events
Credential events
Rotation window coming up
scheduled
rotation · Should appear as an operator-visible upcoming maintenance item, not a surprise failure.
Runtime linkage
Runtime states seeded
0 matching runtime status records
Waiting browser impact
1 waiting browser runs currently depend on this provider context
Approval pressure
0 related approvals in queue or scope adjacency

Credentials lenses

Credentials are now shown as governed runtime objects instead of flat health badges. The page makes session mode, provider risk, re-auth pressure, MFA waits and blocked usage explicit.
• Distinguishes vault-bound, session-bound and operator-assisted usage
• Shows the next recovery action instead of only reporting breakage
• Keeps browser and approval impact attached to the credential state