Pentographer
Docs/Administration/Workspace Isolation and Swapping

Workspace Isolation and Swapping

How Pentographer isolates data across different workspaces and how users can switch organizations.

Pentographer enforces strict workspace boundaries. Every user has a personal workspace created automatically on registration, and can create or join multiple secondary workspaces.

Data Isolation

All application data (customers, projects, playbooks, API keys) belongs to a specific workspace ID.

Users cannot query or access data from organizations they do not belong to. The database queries verify that the user's active organization ID matches the requested resource's organization ID.

Swapping Workspaces

To switch your active workspace:

  1. Click on the workspace switcher dropdown in the bottom left of the sidebar.
  2. Select the organization you want to switch to.
  3. The page reloads, and your session switches immediately. All dashboard data, findings, and playbooks update to reflect the selected organization.

[!IMPORTANT] When you switch workspaces, the server re-issues your JSON Web Token (JWT) with the new active organization ID. This token guarantees that all API requests are securely scoped to the selected organization.

Was this article helpful?

Help us improve the Pentographer documentation.

Subscribe to security audits for builders

Get technical write-ups on building deterministic AI pipelines, self-hosting secure apps, and automating pentesting workflows. No marketing spam.

← Previous articleAI Key Management and Key EncryptionNext article →Customer Profile Management