Skip to main content

Mekari Action (AI Agent)

Give the Qontak AI Agent a self-service way to take actions in other Mekari products (Talenta, Jurnal, Desty) during a conversation, granted via a one-time, scope-limited SSO Super Admin approval and authenticated with HMAC. The goal is to make cross-product agent capability a configuration step for non-technical builders — not a custom engineering build — so Qontak can be sold bundled with sister Mekari products (PUMA cross-tribe selling).

QA Lane

Lane B — keeps a human QA gate. Security/isolation: cross-product SSO approval and HMAC-authenticated action calls. No E2E test specs exist for this initiative yet, so the Lane-A entry bar (100% E2E, spec-mapped coverage) is unmet regardless. Classified 2026-06-29.

One of three sibling "action" initiatives. They share one Action drawer (IA) but differ in what they target and how they authenticate:

InitiativeTargetsAuthDrawer groups
Mekari Action (this)Other Mekari productsHMAC + SSO Super Admin approvalMekari Talenta / Jurnal / Desty
Qontak ActionQontak's own featuresCompany tokenMekari Qontak
Native IntegrationThird-party apps outside MekariOAuth / per-providerOther integration

Master index (ANCHOR)

  • mekari-action-anchor.md — the ANCHOR PRD: the initiative master index (identity, Phase Index, north-star metrics, decisions). It carries no acceptance criteria of its own (those live in the Phase PRDs), so it sits at the initiative root rather than under prds/. Synced with the Confluence Mekari Action — ANCHOR (v1.3) and reconciled against code — it carries a Development Status section: the HMAC auth foundation is shipped (BOT-4210); the SSO approval flow and the Talenta/Jurnal/Desty action catalog are next. Phase 1's PRD is still to be imported under prds/; the first per-product action PRD (Jurnal Create SO/SI) is imported and listed in the anchor's Product Action Catalog.

Phases

PhaseGoalStatusEpic
Phase 1 — Action Picker + One-Time ApprovalSelf-service grant of scope-limited cross-product Mekari Actions during agent configIn progress — HMAC foundation shipped (BOT-4210); approval flow + Talenta/Jurnal/Desty actions pendingBOT-4210 (foundation)
Phase 2 — Credential Rotation, Revocation, Re-ConsentProactive credential rotation, admin revocation UI, re-consent on scope changePlannedTBD
Phase 3 — Multi-Credential per Company + Audit LogMultiple credential sets per company + runtime action audit logPlannedTBD

Contents

  • prds/ — Phase PRDs and per-product action PRDs (each with its own ACs → Jira Epic) land here.
  • rfcs/ — Request for Comments (technical design proposals).
  • tests/ — E2E / acceptance test specs.
  • delivery/ — TPM program-management docs (timeline, status, decisions).