What is the right architecture for multi-tenant agent governance?

Answer

Row-level tenant isolation with org_id on every table, enforced at the query layer. Feature flags per org enable/disable capabilities by plan tier. Separate encryption keys per org for sensitive data. Shared infrastructure with logical isolation. API keys scoped to a single org and hashed with SHA-256 (never stored in plaintext). JWT tokens carry org_id and role claims. The gateway validates tenant context before any request reaches an engine.