4. Global Control Plane (All Systems / Portfolio)
Functional Documentation
1) Purpose
The Global Control Plane is the top-level portfolio dashboard (/) for organization-wide AI operations and compliance oversight.
It is designed to answer:
- How many AI systems are running, and in which lifecycle state.
- What total traffic, risk, and spend look like.
- Whether compliance coverage is improving or lagging.
- Which systems need immediate action (integration missing, high-risk, suspended, and related conditions).
2) What This Page Controls
- Portfolio-wide KPI computation (requests, threats, spend, savings, compliance score).
- Cross-system visibility (status badges, risk class, model/provider tags).
- Entry points into each system's detail control plane.
- New system onboarding entry (
+ Register New AI System). - System deletion workflow (authorized roles only).
- Organization context switching (for multi-organization users).
3) Role and Visibility Model
owner/admin- Can create systems.
- Can delete systems.
- Can view model-efficiency recommendations.
member/operator- Portfolio visibility is read-only (no create/delete controls).
- If no organization memberships exist but customer assignments exist, the user is redirected to deployer workspace.
4) Main Modules on the Page
Header Summary
- Displays organization name and dashboard subtitle.
- Displays quick status counters:
livehigh-risksuspendedtotal systems
Portfolio KPIs (Last 7 Days)
- Total Spend.
- Threats Intercepted.
- Token Usage (Input / Output).
- Compliance Score.
- Projected Savings.
Cost Visibility Chart
- Area chart over selectable windows:
7d,30d,90d,1y
Prompt Categories
- Bubble clusters of top prompt categories/intents across all systems.
- Bubbles are clickable and route to system prompts view with optional
intentquery.
Model Efficiency Recommendation (Conditional)
- Visible for
owner/adminonly. - Uses recent traffic sample and rule-based recommendation thresholds.
Business Value Card
- Projected savings.
- Total ROI.
- Active agents.
- Model spend.
AI Systems Grid
- One card per AI system.
- Shows status, risk class, models, provider, and integration warnings.
- Card click opens system detail.
5) KPI Logic (Operational Behavior)
- Total Requests: counts portfolio events where source is
ingestorguard. - Threats Intercepted: increments on
pii_detected,security_block,security_alert. - Total Spend: sum of
cost_usd. - Projected Savings: sum of metadata field
projected_savings_usd. - Cost Spiking badge (
SpikingvsStable):Spikingwhen latest-day spend is greater than1.25xaverage spend for the active display window.
- Compliance Score:
- Primary mode:
(completed sections / total sections) * 100. - Portfolio sections are aggregated per system (8 sections per system).
- Fallback mode applies only if section totals are unavailable.
- Primary mode:
- ROI display:
- Displays
N/Auntil spend reaches a floor ($1) to avoid misleading ratios.
- Displays
6) Buttons and Controls
| Control | Location | Visibility | Action | Result |
|---|---|---|---|---|
+ Register New AI System | Sidebar/footer and empty state | owner/admin | Opens onboarding sheet | Multi-step system creation flow |
| Organization switcher | Sidebar top | Multi-org users | Open org dropdown | Enables org context selection |
| Org dropdown item | Org switch menu | Multi-org users | Select org | Sets active org and redirects to / |
7d / 30d / 90d / 1y | Cost Visibility card | All roles | Switch range | Refilters chart window |
| Prompt category bubble | Prompt Categories | All roles | Click category | Routes to prompts page with optional intent filter |
| System card (entire card) | AI Systems grid | All roles | Click card | Opens /system/{id} |
Delete icon (X) | System card top-right | owner/admin | Open confirmation | Displays delete dialog |
Cancel | Delete dialog | owner/admin | Close dialog | No deletion |
Delete system | Delete dialog | owner/admin | Calls delete action | Deletes system and refreshes dashboard |
| Mobile nav button | Top-left on mobile | All roles | Open nav sheet | Sidebar navigation on mobile |
| User menu | Sidebar bottom | All roles | Open profile menu | Profile and auth actions |
Profile | User menu | All roles | Navigate | Opens /profile |
Sign out | User menu | All roles | Sign-out action | Ends session |
7) System Card Semantics
- Status badge:
Live,In Review,Suspended,Maintenance,Draft
- Risk badge:
High-RiskorStandard
- Model tags:
- Parsed from configured model catalog/name.
- Provider tag:
- Provider name when present.
- Customer Managed tag:
- Indicates system is managed through customer assignment.
- SDK integration required badge:
- Shown when integration is expected but no active API key is detected and system is not customer-managed.
8) Empty-State Behavior
If zero systems exist:
- Dashboard displays
No AI systems yet. - If the user has
owner/adminpermissions and org context is valid,+ Register New AI Systemis shown in empty state. - If org membership is missing, an organization/policy message is displayed.
9) Operational Notes
- Portfolio charts and KPIs are computed from stored telemetry, not static configuration values.
- Compliance score is portfolio-aggregated, not single-system only.
- Topic bubbles intentionally filter internal operational labels so category insights stay user-meaningful.