fix: remove global readability of namespace nodes

src/cmd/root.go

@@ -12,6 +12,21 @@ import (
 )
 
 func getNodeService() (service.NodeService, error) {
+	if token := os.Getenv("AX_TOKEN"); token != "" {
+		if cfg.Remote.Host != "" {
+			base := fmt.Sprintf("http://%s:%d", cfg.Remote.Host, cfg.Remote.Port)
+			return service.NewRemoteNodeService(base, ""), nil
+		}
+		st, err := store.FindAndOpenSQLiteStore()
+		if err != nil {
+			return nil, err
+		}
+		agentID := service.LookupAgentToken(st, token)
+		if agentID == "" {
+			return nil, fmt.Errorf("invalid AX_TOKEN: agent not found")
+		}
+		return service.NewLocalNodeService(st, agentID), nil
+	}
 	user := cfg.User
 	if user == "" {
 		return nil, fmt.Errorf("no user configured: run 'ax user set <username>' first")

src/service/node_service_impl.go

@@ -185,16 +185,15 @@ func (s *nodeServiceImpl) getPermContext() (*permContext, error) {
 		}
 	}
 
-	// User and namespace nodes are globally readable (they represent identities,
+	// User nodes are globally readable (they represent identities,
 	// and anyone can reference or assign to them).
-	for _, nodeType := range []string{"user", "namespace"} {
-		nodes, _ := s.store.FindNodes([]*models.Rel{{Type: models.RelType("_type::" + nodeType), Target: ""}})
+	// Namespace nodes are NOT globally readable; access must be explicitly granted.
+	nodes, _ := s.store.FindNodes([]*models.Rel{{Type: "_type::user", Target: ""}})
 	for _, n := range nodes {
 		if pc.levels[n.ID] < permRead {
 			pc.levels[n.ID] = permRead
 		}
 	}
-	}
 
 	return pc, nil
 }