Ed25519 keypair-based node identity, keypair generation and persistence (/data directory in Docker), RequestSigner trait for signed HTTP requests to sentinel, signature verification in sentinel (Axum auth middleware), claim workflow (display code → user pairs node to account), token-based realtime auth (JWT for Centrifuge channels), Bloom filter for Discord guild membership verification (SHA-256 based Kirsch-Mitzenmacher, 0.1% false positive rate, TypeScript-compatible implementation), access control matrix (public: any node, user: explicit permissions, discord: guild Bloom filter check, owner: always eligible).
Next steps