Connects each Gate 2 model block to its delivery page, evidence note, governance decision, MCP/km-base context, and current status. Source of truth: km-base. Gate 2 PASS. Gate 3 locked.
Each row traces one governance block through delivery, evidence, decision authority, and live MCP/km-base access. "Evidence recorded; public page pending" indicates the delivery exists on maf.timebank.tw behind authentication, but no public-facing status page has been published yet.
| # | Gate / Stage / Step | Status | Delivery Page | Evidence / Decision Reference | MCP / km-base Context |
|---|---|---|---|---|---|
| 1 |
Gate 1 — Public Read
Tier A static public site · Programme public baseline
|
COMPLETE | maf.timebank.tw/ | MAF-Gate1-Signoff-2026-06-13 kce2ces · 2026-06-13 | search_km_base ("Gate 1 signoff") |
| 2 |
Gate 2 — Overall PASS
v0 protected pilot accepted · Option A closeout · kce2ces 2026-06-16
Does NOT grant Pilot→Active · Does NOT open Gate 3
|
PASS | maf.timebank.tw/governance/ | maf-gate2-v0-final-closeout-v1 Option A accepted · kce2ces · 2026-06-16 | get_final_review_checklist get_app_control_status |
| 3 |
Stage 1 — IAM / Keycloak
krp realm · maf-timebank-tw client · Role model: Self / Family / Professional / Organisation
|
COMPLETE | maf.timebank.tw/account/login | MAF-Gate2-Keycloak-Realm-Choice-Baseline-2026-06-15 Phase 1 Signoff · kce2ces · 2026-06-15 | get_app_control_status |
| 4 |
Stage 2 — Consent DB
maf_consent schema · consent_records table · consent_audit_log append-only trigger verified
|
COMPLETE | Evidence recorded; public page pending | MAF-Gate2-Stage2-DB-Readiness-Closeout-2026-06-15 DB creation evidence · 2026-06-15 | get_codex_execution_brief |
| 5 |
Stage 3 — Protected Participation App
Flask app live · /health → stage-3-protected-app mode · /account/login → Keycloak → /account/status
/match → 404 · /exchange → 404 · Gate 3 locked
|
COMPLETE | maf.timebank.tw/ (authenticated routes require sign-in) |
MAF-Gate2-Stage3-UI-UX-SSO-Delivery-Runbook-2026-06-15 UI/UX gate approved · SSO delivery · 2026-06-15 | get_app_control_status |
| 6 |
Stage 4 — MCP Governance Gateway
OAuth connector verified · ChatGPT MCP verified · km-base federation active · 5 tools active · Qdrant tool disabled by config
|
COMPLETE | maf.timebank.tw/governance/ | MAF-Gate2-Phase2-AllSteps-Status-Update-2026-06-17 All-steps acceptance · 2026-06-17 | get_app_control_status get_codex_execution_brief get_final_review_checklist list_contexts search_km_base |
| 7 |
Step 1 — Identity & Role
Keycloak auth required before any write · Role assigned and human-reviewed before evidence submission
|
v0 live | maf.timebank.tw/account/login | Phase 1 Signoff · app 42b6a90 kce2ces · 2026-06-15 | get_app_control_status |
| 8 |
Step 2 — Consent Capture
7 trigger events · Explicit, revocable, purpose-specific · Human review required; no automated consent processing
|
v0 live | maf.timebank.tw/account/login (consent on registration) |
Consent Artifacts #1–#7 · app 42b6a90 Phase 1 Signoff · kce2ces · 2026-06-15 | search_km_base ("Consent Artifact") |
| 9 |
Step 3 — ICF-Aligned Classification
Self-reported only · ICF domains d1/d4/d7/d9 · Non-clinical; not eligibility determination
Professional Review Bridge: designed, not built
n8n Integration: designed, not activated
|
v0 accepted | Evidence recorded; public page pending | MAF-Gate2-Phase2-Step3-Status-Update-2026-06-16 · d274657 · app 64cf07d Accepted · 2026-06-16 | get_codex_execution_brief |
| 10 |
Step 4 — Staging
Support pathway classification before any matching · Protected case pathway triggers safeguarding · No matching at this step
|
v0 accepted | Evidence recorded; public page pending | MAF-Gate2-Phase2-Step4-Staging-Build-Authorization-2026-06-17 · app 51a67ff · evidence d8c9df1 Accepted · 2026-06-17 | get_codex_execution_brief |
| 11 |
Step 5 — Exchange Readiness Assessment
6 CES transaction types + conventional currency · Mixed time+currency (type 5) disabled at v0
|
v0 accepted | Evidence recorded; public page pending | MAF-Gate2-Phase2-Step5-Exchange-Readiness-Design-2026-06-17 · app 1559cc8 · evidence ed3d4d3 Accepted · 2026-06-17 | get_codex_execution_brief |
| 12 |
Step 6 — Evidence Intake
Participation record after Steps 1–5 complete · Human verification required · Governed by MAF-Evidence-Model-v0.1.yaml
pilot_notice_mode: true · Artifact #4 Part B blocked by R-4 · card_reference and story_reference deferred
|
v0 accepted | Evidence recorded; public page pending | MAF-Gate2-Phase2-Step6-Evidence-Intake-Design-2026-06-17 · app cbc959d · evidence 8745c8c Accepted · 2026-06-17 | get_codex_execution_brief |
| 13 |
ChatGPT MCP Connector
External AI client access to 5 governance tools confirmed · Connects via mcp.timebank.tw OAuth endpoint
|
VERIFIED | maf.timebank.tw/governance/ | MAF-Gate2-Phase2-AllSteps-Status-Update-2026-06-17 Stage 4 MCP acceptance · 2026-06-17 | External: mcp.timebank.tw (OAuth-gated) |
| 14 |
km-base Federation
Live read access to governance records · km-base is authoritative · Qdrant is derived retrieval only
|
ACTIVE | governance.timebank.tw | MCP Governance Server records git repo init'd 2026-06-09 · live | search_km_base list_contexts (live /km-base/ read) |
| 15 |
R-4 — PDPA Governance Risk Review
WSI/CES internal governance control before Pilot→Active · Underlying risk: PDPA statutory obligations (not yet confirmed by counsel)
OPEN — No external counsel review on file as of 2026-06-17 · Blocks: Pilot→Active · Artifact #4 Part B · Any public PDPA compliance claim · Does NOT block Gate 2 PASS
|
OPEN | maf.timebank.tw/governance/ | maf-gate2-pdpa-status-decision-v1 Signed kce2ces · 2026-06-16 · NOT a legal opinion | search_km_base ("R-4 PDPA") |
| 16 |
Gate 3 — Locked
Matching & exchange · /match → 404 · /exchange → 404 · Requires separate explicit governance authorization not yet granted
/match → 404 · /exchange → 404 · All 6 steps must complete per participant before Gate 3 consideration
|
LOCKED | maf.timebank.tw/governance/ | maf-gate2-v0-final-closeout-v1 · MAF-Gate2-Phase2-AllSteps-Status-Update-2026-06-17 No Gate 3 authorization granted · 2026-06-17 | get_final_review_checklist |
| 17 |
Gate 3 Synthetic v0 — All Six Phases Closed
Phase 1–6 synthetic v0 complete · 294 validators PASS / 0 FAIL · Private offline artifacts · No live operations authorized
Synthetic v0 CLOSED ≠ live authorization · Gate 3 LOCKED · No matching, exchange, or CES transactions
|
v0 CLOSED | maf.timebank.tw/governance/ | MAF-CES-Gate3-Phase6-Synthetic-v0-Closeout · MAF-CES-Gate3-Synthetic-v0-Closeout-Decision Gate 3 synthetic v0 closed · 2026-06-19 · km-base 1677d84 | search_km_base ("Gate 3 synthetic v0") |
Authoritative source: km-base via governance.timebank.tw · MCP governance tools provide live read access · Qdrant is derived retrieval only, never authoritative.
「我的優勢卡」(ABID)版權屬於廖華芳教授及財團法人中華民國發展遲緩兒童基金會。WSI/CES 為社區實施合作夥伴,不持有授權,不製作、複製或衍生優勢卡內容。官方平台:maf4p.com · 官方工具:fcdd.org.tw/AbilityCard/info
This traceability matrix is a public-safe governance status record. It does not constitute legal advice, clinical assessment, eligibility determination, or PDPA compliance certification. No Pilot→Active approval is implied. Gate 3 remains locked.