Monitor Encryption Infrastructure Health and Key Registration Status Across Organizations

Within the admin portal's integration health section, the Global Administrator can view encryption-specific health indicators surfaced from the Encryption Infrastructure and Key Management Service. Metrics include: number and percentage of active users with registered public keys per organization, any users who completed onboarding but whose key registration failed (requiring re-provisioning), and the last successful run timestamp and next scheduled run for the Assignment Reminder Service Edge Function. Alerts are raised for organizations where >5% of active users lack a registered public key, as these represent potential coordinator blockers.

MEDIUM story-encrypted-task-assignment-global-admin-007 5 pts

Story Points

Medium

Priority

Encrypted Task Assignment to Peer Mentors

Feature

User Story

As a Global Administrator

I want to view a platform health dashboard showing the status of encryption infrastructure, including the percentage of active users who have registered public keys, any failed key registration events, and the operational status of the Supabase Edge Functions handling scheduled reminders

So that So that I can proactively identify users or organizations where encryption key provisioning has failed — preventing coordinators from being blocked from sending assignments — and ensure the reminder Edge Function is running reliably

Acceptance Criteria

Given the global administrator opens the encryption health section of the admin portal, when the view loads, then per-organization metrics are shown: total active users, users with registered public keys, and users missing key registration
Given a user completed onboarding but key registration failed, when the admin views the health dashboard, then that user is listed in a failed-registration queue with their organization and onboarding timestamp
Given the admin identifies a user with a missing key, when they trigger a re-provisioning notification, then the user receives an in-app prompt to re-authenticate and regenerate their key pair
Given the Assignment Reminder Service Edge Function last ran successfully, when the admin views the infrastructure status, then the last successful execution timestamp and next scheduled run are displayed
Given the Edge Function has not run within its expected schedule, when the admin views the dashboard, then a health alert is raised indicating the cron job may be stalled

Business Value

The encrypted assignment workflow is operationally critical for Blindeforbundet. If peer mentors have not completed key provisioning, coordinators are silently blocked from dispatching assignments without a clear error. The Global Administrator needs proactive visibility into key registration health to prevent this blocker from going undetected, and needs confidence that the 10-day reminder automation is running reliably at a platform level.

Components

Key Management Service service
Assignment Reminder Service service
Encryption Infrastructure infrastructure
Push Notification Gateway infrastructure

Encrypted Task Assignment to Peer Mentors

Related Feature

Global Administrator

User Role