Migration Tabmigrationtab.com
SECURITY

Built for cautious operators

Migration Tab assumes every tenant boundary is sacred. Credentials are encrypted, data is org-scoped, and live mutations stay behind explicit human approval.

CONTROL / 01

Encrypted credentials

Tenant client secrets and delegated OAuth tokens are encrypted at rest with AES-256-GCM using your deployment secret key.

CONTROL / 02

Org-scoped isolation

Supabase Row Level Security on every table and storage path. Workspace members cannot read another organization's data.

CONTROL / 03

Live writes locked by default

Cloud mutations require MIGRATIONTAB_ALLOW_LIVE_MUTATIONS=true plus typed job approval. Today's catalog is discover/export only.

CONTROL / 04

Role-based access

Operators run jobs and edit mappings. Admins manage tenant profiles, connect delegated Forms, grant SPE access, and approve live operations.

CONTROL / 05

Audit trail

Job creation, tenant changes, mapping updates, and approvals write to an org-scoped audit log.

CONTROL / 06

No silent admin bypass

SPE Loop access and group Forms require explicit operator action in the customer tenant — the SaaS cannot run SharePoint admin PowerShell for you.