AgriOps — Documentation Conventions

Status: Living document Scope: How this documentation set is organised, who each part is for, and what every doc must contain.

This page is the meta of docs.agriops.io — read it once and you’ll know which corner of the docs to open for any future question. The home page is the table of contents; this page is the map legend.

Reading Orders by Audience

New to the codebase:

  1. System Overview — architecture, stack, RBAC matrix
  2. Data Model — all models, relationships, ERD
  3. Tenant Model — the security boundary
  4. ADR 003 — Tenant Isolation Strategy and ADR 011 — RLS Deferral — why the boundary is shaped this way
  5. Local Setup — get the project running

Implementing a new feature:

  1. Tenant Model — every feature respects tenant isolation
  2. ADR 003 — Tenant Isolation Strategy — non-negotiable rules
  3. Data Model — understand the schema before adding to it
  4. The relevant ADR if your feature touches an existing decision

Conducting a security review:

  1. Threat Model — full STRIDE landscape and control mapping
  2. Security Testing Log — red team exercises, findings, resolutions (RT-001, RT-002, RT-003)
  3. ADR 003 — Tenant Isolation Strategy and ADR 011 — RLS Deferral
  4. Production Readiness Audit

Responding to an incident:

  1. Incident Response Runbook — start here, no detours

Onboarding a tenant:

  1. Tenant Onboarding Checklist
  2. Subscription Agreement Template

Folder Structure

docs/
  README.md                        ← You are here (conventions + reading orders)
  index.md                         ← Live homepage / table of contents
  ROADMAP.md                       ← Phase-by-phase build plan
  threat-model.md                  ← Full threat landscape and mitigations
  security-testing.md              ← Red-team exercises and findings
  production-readiness.md          ← Production-failure-mode audit
  user-manual.md                   ← End-user guide
  eudr-compliance-gaps.md          ← EUDR-specific feature deltas
  export-compliance-gaps.md        ← Export-readiness deltas
  ingestion-resilience-batch9.md   ← GeoJSON import resilience notes
  CNAME                            ← docs.agriops.io binding
  _config.yml                      ← Jekyll configuration

  adr/                             ← Architecture Decision Records (immutable)
    001-django-postgres-stack.md
    002-hybrid-role-architecture.md
    003-tenant-isolation-strategy.md
    004-geolocation-jsonfield-over-postgis.md
    005-eudr-farm-model-separation.md
    006-ops-event-log-separation.md
    007-totp-over-ip-restriction.md
    008-cloudflare-email-routing-interim.md
    009-production-hardening-indexes-async-email-env-validation.md
    010-billing-architecture.md
    011-postgres-row-level-security-deferral.md

  design/                          ← Living system-design documents
    system-overview.md
    data-model.md
    tenant-model.md
    api-contract.md
    compliance-module.md
    rbac.md

  runbooks/                        ← Operational procedures
    local-setup.md
    seed-data.md
    deployment.md
    incident-response.md
    backup-restore.md
    geometry_drift_test.md

  diagrams/                        ← Text-based visual diagrams
    erd.dbml                       (render at dbdiagram.io)
    auth-flow.mermaid              (render at mermaid.live)
    tenant-isolation.mermaid
    eudr-traceability-chain.mermaid

  commercial/                      ← Customer-facing legal and onboarding
    subscription-agreement-template.md
    tenant-onboarding-checklist.md

  assets/                          ← Images and static files
  _layouts/                        ← Jekyll templates (Cayman theme override)

Document Types

Architecture Decision Records (ADRs)

Each ADR captures a single architectural decision — the context, options considered, choice made, and consequences. ADRs are immutable records of intent. They are never deleted — if a decision is reversed or refined, a new ADR is written referencing the old one.

ADR Status values:

Design Documents

How the system actually works — what the implementation looks like today. Living documents updated as the system evolves. They cross-reference ADRs for the why behind each shape.

Runbooks

Step-by-step operational procedures, written for a developer who may be under pressure (incident response) or unfamiliar with the system (new hire setup). Runbooks assume nothing — they are explicit, numbered, and complete.

Diagrams

Stored as text-based formats for version control friendliness:

Commercial Documents

Customer-facing legal templates and onboarding checklists. Treated with the same change discipline as ADRs — versions visible in git history, no silent rewrites.

Documentation Standards

Every ADR must include:

Every design document must include:

Every runbook must include:

Contributing Documentation

When adding a new feature or making an architectural decision:

  1. New architectural decision — write an ADR before writing code
  2. Data model change — update design/data-model.md and diagrams/erd.dbml
  3. API change — update design/api-contract.md
  4. New operational procedure — write a runbook
  5. Threat surface change — update threat-model.md
  6. New ADR — also add the row to index.md and (for accepted ADRs) any back-references in older ADRs being superseded

Documentation and code ship together. A PR that adds a new model without updating the data model documentation is incomplete.

Phase Status

Phase Status Where to look
Phase 1 — Local Prototype ✅ Complete Stack and structure documented in System Overview
Phase 2 — Auth, RBAC, API ✅ Complete RBAC Design, API Contract
Phase 3 — Cloud Deployment ✅ Complete Deployment Runbook
Phase 4 — Inventory, Traceability, Compliance, Billing 🔄 In progress See ROADMAP for current block status
Phase 5 — Buyer Portal, Market Intelligence Planned ROADMAP

For the live build status — what’s done this week, what’s open — see ROADMAP.md.

AgriOps — Trust verification infrastructure for agricultural supply chains github.com/Sirleroy · Built in public · Security-first SaaS