Overview Command Center
IDLE
Auth0
Redis
--:--:--
Zero-Trust Authorization Engine
Vergil Command Center
Confidence-gated AI action authorization with 4-tier state machine, Auth0 step-up MFA, multi-party quorum, and Dead Man's Switch protocol.
0 actions processed
100% uptime
Total Actions
0
all tiers combined
T1 Auto-Approved
0
conf ≥ threshold
T3 Quorum
0
multi-party approved
DMS Triggers
0
god mode activations
Live Event Feed
0 events
No events yet — run a scenario to begin.
Quick Execute Live Scenarios
TIER 1
Auto-Approve
High confidence, executes instantly
TIER 2
Step-Up MFA
Auth0 MFA challenge required
TIER 3
Quorum Vote
Multi-party approval needed
TIER 4
Dead Man's Switch
Override zero-trust lock
State Machine IDLE
IDLE
GATE
EXEC
PENDING
APPROVED
GOD MODE
Current: IDLE
Activity Graph Last 20 actions
T1 Auto
T2 MFA
T3 Quorum
T4 DMS
Recent Decisions
ActionTierStatusConf
Run a scenario to see decisions
System Health Live
Vergil EngineONLINE
Redis StoreCONNECTED
Auth0 JWKSVERIFIED
Latency (p95)48ms
Memory142MB / 512MB
Confidence Tier Routing How actions are classified
TIER 1
Auto-Approve
conf ≥ threshold → EXECUTABLE immediately. No human loop.
TIER 2
Step-Up Auth
Auth0 MFA challenge sent. PENDING until user completes.
TIER 3
Quorum Vote
≥2 trustees must approve via Redis WATCH/MULTI transaction.
TIER 4
Dead Man's Switch
Quorum timeout → override zero-trust. Temporary god mode.
Live Events
Full audit log of every action processed by the Vergil engine.
0
Total Events
0
Tier 1 Auto
0
Tier 2 MFA
0
Tier 3 Quorum
All
T1
T2
T3
T4
No events yet. Run a scenario to generate events.
Event TimelineVisual distribution
OldestNow
Scenarios
Simulate each authorization tier with realistic actions. Watch the engine respond in real-time.
TIER 1 never run
Auto-Approve
Confidence exceeds threshold — action executes immediately without human intervention. The happy path for routine, well-understood operations.
Confidence0.92
Threshold0.70
deploy_to_staging → EXECUTABLE
TIER 2 never run
Step-Up Auth (MFA)
Confidence is below threshold — the engine requests Auth0 step-up authentication. Action stays PENDING until the user completes MFA challenge.
Confidence0.54
Threshold0.70
modify_prod_config → PENDING → APPROVED
TIER 3 never run
Multi-Party Quorum
High-risk action requires ≥2 trustees to independently approve via Redis WATCH/MULTI atomic transactions. Prevents any single point of compromise.
Confidence0.61
Required Approvals2 / 3
drop_production_db → QUORUM REQUIRED
TIER 4 never run
Dead Man's Switch
Quorum timeout triggers automatic override. The AI receives temporary elevated privileges — God Mode — as a failsafe for mission-critical contingencies.
Countdown3:00
Override LevelGOD_MODE
exec_contingency_plan → GOD MODE
Custom Action Builder Execute your own action
Confidence0.75
Threshold0.70
Predicted tier: T1 AUTO-APPROVE
Execution Output
Live trace
vergil@engine:~$ waiting for action...
Scenario HistoryThis session
ActionConfidenceThresholdTierStatusTime
No scenarios run yet.
Quorum Center
Manage multi-party approval requests. Trustees authenticate via Auth0 to cast votes.
0
Active
0
Approved
0
Pending
0
DMS Override
Trustees receive Auth0 step-up MFA URLs and approve by authenticating. Redis WATCH/MULTI ensures atomic concurrency.
No active quorums. Run Tier 3 scenario to create one.
⚡ Dead Man's Switch
Arms automatically when quorum times out. Can be manually triggered in emergency.
Trustee Registry3 registered
AA
alice@company.com
Lead Engineer · Trustee
Active
BK
bob@company.com
Security Officer · Trustee
Active
CL
carol@company.com
CTO · Super-Trustee
Active
Quorum HistoryAll time
IDActionApprovalsResultTime
No completed quorums yet.
Architecture
System design, data flow, and technical implementation details for the Vergil engine.
System FlowRequest lifecycle
🤖
AI Agent
VergilClient SDK
Vergil Engine
FastAPI ASGI
🔀
Confidence Gate
conf vs threshold
T1 EXEC
T2 MFA
T3 QUORUM
T4 DMS
Infrastructure
Action Executed
4-Tier State MachineActionState enum
T1 Auto-Approve
• conf ≥ threshold
• Status: EXECUTABLE
• Latency: ~2ms
• Zero human loop
T2 Step-Up Auth
• conf < threshold
• Status: PENDING → APPROVED
• Auth0 MFA per-action URL
• RS256 JWT via JWKS
T3 Multi-Party Quorum
• Sensitive / high-risk
• ≥2 trustees required
• Redis WATCH/MULTI atomic
• Exponential backoff poll
T4 Dead Man's Switch
• Quorum timeout fallback
• Override zero-trust lock
• Temp elevated privileges
• Auto-resets after use
Tech StackCore dependencies
FastAPI
ASGI · Python 3.11+
🔴
Redis
Async · WATCH/MULTI
🔐
Auth0
RS256 JWT · JWKS
🐍
Pydantic v2
Typed DTOs · Settings
📡
VergilClient SDK
Async · Exponential Backoff
🔒
Zero-Trust
4-Tier State Machine
API Referencev1 endpoints
MethodPathDescriptionAuth
POST/api/v1/actions/executeSubmit action for authorizationBearer JWT
POST/api/v1/actions/quorumCast trustee quorum approvalAuth0 MFA
GET/api/v1/actions/{id}/statusPoll action statusBearer JWT
GET/api/v1/auth0/callbackAuth0 OAuth2 callbackNone
GET/healthEngine health checkNone
Settings
Configure Vergil engine parameters, Auth0 integration, and security thresholds.
Auth0 Configuration Connected
Redis Store Connected
Tier Thresholds Confidence routing
T1 Auto-Approve0.70
T2 Step-Up Auth0.50
T3 Quorum Required0.30
DMS Timeout (s)180
Required Approvals2
Notifications & Security
DMS Auto-Trigger
Trigger DMS when quorum times out
Audit Log
Write all decisions to persistent log
Slack Alerts
Post quorum requests to #security channel
Email Trustees
Email trustees when approval required
Rate Limiting
Max 100 actions per minute per agent
⚠ Danger Zone
These actions are irreversible. They will affect all active sessions and pending quorums.
Reviewer Credentials
Use these credentials to test the Tier 2 Step-Up MFA and Tier 3 Quorum flows.
Email: reviewer@company.com
Pass: VergilDemo2026!