7a. Authentication, Roles & Authorization
This section turns the functional goals about users, roles, leases and interlockings into concrete code-level rules.
Login + PIN
Effective roles
effective(user, layout) computation.
Domain Policy Layer (pkgs/bigfred/server/security)
*SecurityContext per aggregate.