diff --git a/agentic-rag-authorization/.env.example b/agentic-rag-authorization/.env.example
new file mode 100644
index 0000000..c2b3fe4
--- /dev/null
+++ b/agentic-rag-authorization/.env.example
@@ -0,0 +1,17 @@
+# Weaviate Configuration
+WEAVIATE_URL=http://localhost:8080
+WEAVIATE_API_KEY=
+
+# SpiceDB Configuration
+SPICEDB_ENDPOINT=localhost:50051
+SPICEDB_TOKEN=devtoken
+
+# OpenAI Configuration
+# Get your API key from https://platform.openai.com/api-keys
+OPENAI_API_KEY=your-api-key-here
+
+# Agent Behavior
+MAX_RETRIEVAL_ATTEMPTS=1
+
+# Logging
+LOG_LEVEL=INFO
diff --git a/agentic-rag-authorization/.gitignore b/agentic-rag-authorization/.gitignore
new file mode 100644
index 0000000..ae5732a
--- /dev/null
+++ b/agentic-rag-authorization/.gitignore
@@ -0,0 +1,59 @@
+# Python
+__pycache__/
+*.py[cod]
+*$py.class
+*.so
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+pip-wheel-metadata/
+share/python-wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+MANIFEST
+
+# Virtual environments
+venv/
+env/
+ENV/
+.venv
+
+# IDEs
+.vscode/
+.idea/
+*.swp
+*.swo
+*~
+
+# Environment
+.env
+.env.local
+
+# Testing
+.pytest_cache/
+.coverage
+htmlcov/
+.tox/
+
+# OS
+.DS_Store
+Thumbs.db
+
+# Logs
+*.log
+
+# Docker volumes
+docker-volumes/
+
+docs/
\ No newline at end of file
diff --git a/agentic-rag-authorization/ARCHITECTURE.md b/agentic-rag-authorization/ARCHITECTURE.md
new file mode 100644
index 0000000..1b1a20a
--- /dev/null
+++ b/agentic-rag-authorization/ARCHITECTURE.md
@@ -0,0 +1,1566 @@
+# Architecture Deep Dive
+
+Technical details for those implementing similar systems or extending this one.
+
+## System Design
+
+### Core Components
+
+```
+┌─────────────────────────────────────────────────────────┐
+│            Agentic RAG System Architecture              │
+│                                                         │
+│  ┌──────────────┐              ┌──────────────┐        │
+│  │   CLI Tool   │              │   Web UI     │        │
+│  │  (Python)    │              │  (Browser)   │        │
+│  └──────┬───────┘              └──────┬───────┘        │
+│         │                             │                │
+│         │ run_agentic_rag()           │ HTTP API       │
+│         │ (sync)                      │ (async)        │
+│         │                             │                │
+│         └─────────────┬───────────────┘                │
+│                       ▼                                │
+│            ┌────────────────────────┐                  │
+│            │   FastAPI Backend      │                  │
+│            │  - POST /api/query     │                  │
+│            │  - GET /api/users      │                  │
+│            │  - GET /api/health     │                  │
+│            │  - Pydantic validation │                  │
+│            └──────────┬─────────────┘                  │
+│                       ▼                                │
+│            ┌────────────────────────┐                  │
+│            │  LangGraph Engine      │                  │
+│            │  (State Machine)       │                  │
+│            └──────────┬─────────────┘                  │
+│                       │                                │
+│            ┌──────────┼──────────┐                     │
+│            ▼          ▼          ▼                     │
+│        Weaviate    SpiceDB    OpenAI                   │
+│        (Search)    (AuthZ)    (LLM)                    │
+└─────────────────────────────────────────────────────────┘
+```
+
+## System Interfaces
+
+This system provides two interfaces for interacting with the agentic RAG pipeline:
+
+### 1. Command-Line Interface (CLI)
+
+**Purpose:** Direct programmatic access, scripting, testing, and development.
+
+**Entry Point:** `agentic_rag.graph.run_agentic_rag()`
+
+**Usage:**
+```python
+from agentic_rag.graph import run_agentic_rag
+
+result = run_agentic_rag(
+    query="What are our engineering practices?",
+    subject_id="alice",
+    max_attempts=1
+)
+```
+
+**Characteristics:**
+- Synchronous execution
+- Returns full state dictionary
+- Direct access to all state fields (messages, reasoning, documents, etc.)
+- Used in tests and examples
+- Ideal for automation and scripting
+
+**Return Value:**
+```python
+{
+    "query": str,
+    "subject_id": str,
+    "answer": str,
+    "authorized_documents": List[Document],
+    "retrieved_documents": List[Document],
+    "denied_count": int,
+    "messages": List[BaseMessage],
+    "reasoning": List[str],
+    "retrieval_attempt": int,
+    "authorization_passed": bool,
+}
+```
+
+### 2. Web Interface
+
+**Purpose:** User-friendly demonstration and interactive exploration of authorization behavior.
+
+**Architecture:**
+- **Frontend:** Single-page HTML/CSS/JS application (`ui/index.html`, 544 lines)
+- **Backend:** FastAPI REST API (`api/` directory)
+- **Launcher:** Python script with pre-flight checks (`run_ui.py`)
+
+**API Endpoints:**
+- `POST /api/query` - Execute RAG query with authorization
+- `GET /api/users` - List available demo users
+- `GET /api/health` - Check backend service health
+
+**Entry Point:** `api.main.app` (FastAPI application)
+
+**Launch Methods:**
+
+*Automated (recommended):*
+```bash
+python3 run_ui.py
+```
+This launcher performs pre-flight checks:
+- Verifies Weaviate connectivity
+- Verifies SpiceDB connectivity
+- Checks OpenAI API key configuration
+- Validates documents are loaded
+- Auto-opens browser to http://localhost:8000
+
+*Manual:*
+```bash
+uvicorn api.main:app --host 0.0.0.0 --port 8000 --reload
+```
+
+**Request/Response Flow:**
+```
+1. User selects identity (alice, bob, hr_manager, etc.) in browser
+2. User enters query in textarea
+3. Frontend JavaScript sends POST to /api/query:
+   {
+     "query": "What are our practices?",
+     "subject_id": "alice",
+     "max_attempts": 1
+   }
+4. FastAPI validates request (Pydantic models)
+5. Backend calls run_agentic_rag_async()
+6. LangGraph executes state machine (retrieve → authorize → generate)
+7. API formats response:
+   - Authorized documents (doc_id, title, content preview)
+   - Denied documents (doc_id, title, reason)
+   - Query statistics (counts, execution time)
+8. Frontend renders results with visual indicators:
+   - Green cards for authorized documents
+   - Red cards for denied documents with explanations
+   - Statistics panel showing retrieval/authorization metrics
+```
+
+**Key Difference:** The web interface uses `run_agentic_rag_async()` for non-blocking execution, while the CLI uses the synchronous `run_agentic_rag()`. Both execute the same LangGraph state machine but differ in their execution model to suit their respective environments.
+
+### Interface Comparison
+
+| Feature | CLI | Web UI |
+|---------|-----|--------|
+| Execution | Synchronous | Asynchronous |
+| Entry Point | `run_agentic_rag()` | `run_agentic_rag_async()` |
+| Use Case | Scripting, testing, automation | Interactive demos, exploration |
+| Output Format | Python dict | JSON (HTTP response) |
+| User Experience | Code-based | Visual, browser-based |
+| Pre-flight Checks | Manual | Automated (via run_ui.py) |
+| Observability | Full state access | Formatted summaries + stats |
+
+## API Layer Architecture
+
+The web interface is built on a FastAPI backend that wraps the core LangGraph engine with HTTP endpoints, validation, and response formatting.
+
+### Components
+
+**1. FastAPI Application (`api/main.py`)**
+
+Entry point for the web API with:
+- CORS middleware for cross-origin requests (localhost only)
+- Static file serving for the UI (mounts `ui/` directory)
+- Route registration (via `api/routes.py`)
+- Root endpoint serving `index.html`
+
+```python
+from fastapi import FastAPI
+from fastapi.middleware.cors import CORSMiddleware
+
+app = FastAPI(
+    title="Agentic RAG Authorization API",
+    version="1.0.0",
+)
+
+# CORS for local development
+app.add_middleware(
+    CORSMiddleware,
+    allow_origins=["http://localhost:8000", "http://127.0.0.1:8000"],
+    allow_credentials=True,
+    allow_methods=["*"],
+    allow_headers=["*"],
+)
+
+# API routes under /api prefix
+app.include_router(router, prefix="/api")
+```
+
+**2. Route Handlers (`api/routes.py`)**
+
+Implements three core endpoints:
+
+*POST /api/query:*
+```python
+@router.post("/query")
+async def execute_query(request: QueryRequest) -> APIResponse:
+    # 1. Validate request (Pydantic)
+    # 2. Start execution timer
+    # 3. Call run_agentic_rag_async()
+    # 4. Format authorized documents
+    # 5. Extract denied documents (retrieved but not authorized)
+    # 6. Calculate statistics
+    # 7. Return APIResponse with data or error
+```
+
+*GET /api/users:*
+```python
+@router.get("/users")
+async def get_users():
+    # Returns list of demo users:
+    # - alice (Engineering)
+    # - bob (Sales)
+    # - hr_manager (HR)
+    # - finance_manager (Finance)
+```
+
+*GET /api/health:*
+```python
+@router.get("/health")
+async def health_check():
+    # Returns service status
+    # TODO: Actually check Weaviate/SpiceDB connectivity
+```
+
+**3. Pydantic Models (`api/models.py`)**
+
+Type-safe request/response contracts:
+
+```python
+class QueryRequest(BaseModel):
+    query: str = Field(..., min_length=1, max_length=1000)
+    subject_id: str
+    max_attempts: int = Field(default=1, ge=1, le=5)
+
+class DocumentSummary(BaseModel):
+    doc_id: str
+    title: str
+    content_preview: str  # First 200 chars
+
+class DeniedDocumentSummary(BaseModel):
+    doc_id: str
+    title: str
+    reason: str  # "User 'bob' does not have permission..."
+
+class QueryStats(BaseModel):
+    retrieved_count: int
+    authorized_count: int
+    denied_count: int
+    retrieval_attempts: int
+    execution_time_ms: int
+
+class QueryResponseData(BaseModel):
+    query: str
+    subject_id: str
+    answer: str
+    authorized_documents: List[DocumentSummary]
+    denied_documents: List[DeniedDocumentSummary]
+    stats: QueryStats
+
+class APIResponse(BaseModel):
+    success: bool
+    data: Optional[QueryResponseData] = None
+    error: Optional[dict] = None
+```
+
+**4. Configuration (`api/config.py`)**
+
+API-level configuration (separate from core `agentic_rag.config`):
+
+```python
+class APIConfig(BaseModel):
+    cors_origins: List[str] = [
+        "http://localhost:8000",
+        "http://127.0.0.1:8000",
+    ]
+    api_prefix: str = "/api"
+```
+
+### Request Processing Flow
+
+Detailed flow through the API layer:
+
+```
+Browser
+  │
+  ▼ HTTP POST /api/query
+  │ Content-Type: application/json
+  │ Body: {
+  │   "query": "What are our engineering practices?",
+  │   "subject_id": "alice",
+  │   "max_attempts": 1
+  │ }
+  │
+FastAPI Router (routes.py)
+  │
+  ▼ Pydantic validation
+  │ - query: 1-1000 chars ✓
+  │ - subject_id: present ✓
+  │ - max_attempts: 1-5 ✓
+  │
+  ▼ Start timer (time.time())
+  │
+run_agentic_rag_async()
+  │
+  ▼ Execute LangGraph
+  │ 1. Retrieval Node → Weaviate BM25 search
+  │ 2. Authorization Node → SpiceDB permission checks
+  │ 3. Generation Node → LLM answer generation
+  │
+  ▼ Returns state dict:
+  │ {
+  │   "query": "...",
+  │   "subject_id": "alice",
+  │   "answer": "Based on...",
+  │   "retrieved_documents": [doc1, doc2, doc3],
+  │   "authorized_documents": [doc1, doc2],
+  │   "denied_count": 1,
+  │   "retrieval_attempt": 1,
+  │   ...
+  │ }
+  │
+Route Handler Processing
+  │
+  ▼ Calculate execution time
+  │ execution_time_ms = int((time.time() - start_time) * 1000)
+  │
+  ▼ Format authorized documents
+  │ For each in authorized_documents:
+  │   DocumentSummary(
+  │     doc_id=doc.metadata["doc_id"],
+  │     title=doc.metadata["title"],
+  │     content_preview=doc.page_content[:200]
+  │   )
+  │
+  ▼ Extract denied documents
+  │ Compare retrieved_documents vs authorized_documents by doc_id
+  │ For each denied:
+  │   DeniedDocumentSummary(
+  │     doc_id=...,
+  │     title=...,
+  │     reason="User 'alice' does not have permission..."
+  │   )
+  │
+  ▼ Build statistics
+  │ QueryStats(
+  │   retrieved_count=3,
+  │   authorized_count=2,
+  │   denied_count=1,
+  │   retrieval_attempts=1,
+  │   execution_time_ms=3420
+  │ )
+  │
+  ▼ Wrap in APIResponse
+  │ APIResponse(
+  │   success=True,
+  │   data=QueryResponseData(...)
+  │ )
+  │
+  ▼ JSON serialization (FastAPI automatic)
+  │
+Browser
+  │
+  ▼ Frontend JavaScript receives JSON
+  │
+  ▼ Render answer
+  │ Display in answer card
+  │
+  ▼ Render authorized documents
+  │ Green cards with doc_id, title, preview
+  │
+  ▼ Render denied documents
+  │ Red cards with doc_id, title, reason
+  │
+  ▼ Display statistics
+  │ "Retrieved: 3 | Authorized: 2 | Denied: 1"
+  │ "Execution time: 3.42s"
+```
+
+### Frontend Architecture
+
+**Single-Page Application (`ui/index.html`)**
+
+The frontend is a self-contained HTML file (544 lines) with embedded CSS and JavaScript:
+
+**Structure:**
+- Header with title and description
+- User selection dropdown (populated via GET /api/users)
+- Query textarea input
+- Submit button with loading state
+- Results section (hidden until query executes)
+  - Answer card
+  - Authorized documents section (green styling)
+  - Denied documents section (red styling)
+  - Statistics panel
+
+**Key JavaScript Functions:**
+```javascript
+// Load available users on page load
+async function loadUsers() {
+    const response = await fetch('/api/users');
+    // Populate dropdown
+}
+
+// Execute query
+async function executeQuery() {
+    const response = await fetch('/api/query', {
+        method: 'POST',
+        headers: {'Content-Type': 'application/json'},
+        body: JSON.stringify({
+            query: queryText,
+            subject_id: selectedUserId,
+            max_attempts: 1
+        })
+    });
+    const data = await response.json();
+    displayResults(data);
+}
+
+// Render results with authorization transparency
+function displayResults(data) {
+    // Show answer
+    // Render authorized docs (green cards)
+    // Render denied docs (red cards with reasons)
+    // Display statistics
+}
+```
+
+**Design Philosophy:**
+- Zero build tools (vanilla HTML/CSS/JS)
+- Responsive design (works on mobile)
+- Clear visual distinction between authorized and denied content
+- Transparency: always show what was denied and why
+
+### Security Considerations
+
+**Current State (Demo-Focused):**
+
+The API layer is designed for **demonstration and education**, not production use. Current security characteristics:
+
+1. **No API Authentication**
+   - Endpoints are publicly accessible
+   - No JWT, API keys, or session management
+   - Anyone can query as any user
+
+2. **Client-Side User Selection**
+   - User identity selected in browser dropdown
+   - No server-side identity verification
+   - Trivial to impersonate any user
+
+3. **CORS Limited to Localhost**
+   ```python
+   allow_origins=["http://localhost:8000", "http://127.0.0.1:8000"]
+   ```
+   - Restricts browser-based access to local development
+   - Does not protect against direct HTTP requests
+
+4. **No Rate Limiting**
+   - No protection against abuse or DoS
+   - OpenAI API costs could accumulate
+
+**Why This Is Acceptable for Demo:**
+- System demonstrates authorization concepts (SpiceDB)
+- Not intended for production deployment
+- Educational value outweighs security limitations
+- Clear documentation of what NOT to do in production
+
+**Production Recommendations:**
+
+To deploy this system in production, implement:
+
+1. **API Authentication**
+   ```python
+   from fastapi import Depends, HTTPException
+   from fastapi.security import HTTPBearer
+
+   security = HTTPBearer()
+
+   @router.post("/query")
+   async def execute_query(
+       request: QueryRequest,
+       credentials: HTTPAuthorizationCredentials = Depends(security)
+   ):
+       # Validate JWT or API key
+       user = validate_token(credentials.credentials)
+
+       # Use authenticated user identity
+       result = await run_agentic_rag_async(
+           query=request.query,
+           subject_id=user.id,  # From token, not client
+           max_attempts=request.max_attempts
+       )
+   ```
+
+2. **Server-Side Identity Verification**
+   - Extract user identity from authenticated session
+   - Never trust client-provided subject_id
+   - Validate user exists in authorization system
+
+3. **Rate Limiting**
+   ```python
+   from slowapi import Limiter
+   from slowapi.util import get_remote_address
+
+   limiter = Limiter(key_func=get_remote_address)
+
+   @router.post("/query")
+   @limiter.limit("10/minute")
+   async def execute_query(...):
+       # Process request
+   ```
+
+4. **Request Logging and Audit Trails**
+   ```python
+   import structlog
+
+   logger = structlog.get_logger()
+
+   @router.post("/query")
+   async def execute_query(request: QueryRequest):
+       logger.info(
+           "query_request",
+           subject_id=request.subject_id,
+           query=request.query,
+           timestamp=datetime.utcnow(),
+       )
+       # Execute query
+   ```
+
+5. **HTTPS in Production**
+   - Terminate TLS at load balancer or reverse proxy
+   - Never send credentials over HTTP
+
+6. **Input Sanitization**
+   - Already done: Pydantic validates query length (1-1000 chars)
+   - Consider additional sanitization for prompt injection
+
+7. **CORS Restrictions**
+   ```python
+   allow_origins=[
+       "https://your-production-domain.com",
+       "https://app.your-domain.com",
+   ]
+   ```
+
+**Security Boundary Remains Intact:**
+
+Importantly, API-level security issues do NOT compromise the core authorization model:
+- SpiceDB still enforces document-level permissions
+- Authorization node still cannot be bypassed
+- Even if an attacker queries as any user, they only see documents that user can access
+- The demonstration successfully shows how authorization works, even without API auth
+
+### Async Execution Model
+
+**Why Async for Web Interface:**
+
+The web interface uses `run_agentic_rag_async()` instead of the synchronous `run_agentic_rag()`:
+
+**Synchronous (CLI):**
+```python
+def run_agentic_rag(query: str, subject_id: str, max_attempts: int) -> dict:
+    # Blocks until complete
+    result = graph.invoke(initial_state)
+    return result
+```
+
+**Asynchronous (Web API):**
+```python
+async def run_agentic_rag_async(query: str, subject_id: str, max_attempts: int) -> dict:
+    # Non-blocking, allows concurrent requests
+    result = await graph.ainvoke(initial_state)
+    return result
+```
+
+**Benefits of Async:**
+
+1. **Concurrency**
+   - Server can handle multiple queries simultaneously
+   - Other requests aren't blocked while one query waits for OpenAI
+
+2. **Resource Efficiency**
+   - Async I/O doesn't waste threads on waiting
+   - Better scalability under load
+
+3. **FastAPI Integration**
+   - FastAPI is async-first framework
+   - Async route handlers are more efficient
+
+4. **Consistent Performance**
+   - Queries don't queue behind each other
+   - Response time remains consistent under load
+
+**Implementation:**
+
+Both execution paths use the same LangGraph state machine, just different invocation methods:
+
+```python
+# graph.py
+from langgraph.graph import StateGraph
+
+workflow = StateGraph(AgenticRAGState)
+# ... add nodes, edges ...
+graph = workflow.compile()
+
+# Synchronous wrapper (CLI)
+def run_agentic_rag(query, subject_id, max_attempts):
+    return graph.invoke({
+        "query": query,
+        "subject_id": subject_id,
+        "max_attempts": max_attempts,
+        # ... other initial state
+    })
+
+# Asynchronous wrapper (Web API)
+async def run_agentic_rag_async(query, subject_id, max_attempts):
+    return await graph.ainvoke({
+        "query": query,
+        "subject_id": subject_id,
+        "max_attempts": max_attempts,
+        # ... other initial state
+    })
+```
+
+**Node Compatibility:**
+
+All nodes work with both sync and async execution:
+- LangChain components support async (Weaviate client, OpenAI)
+- SpiceDB gRPC client is synchronous but fast (~40-50ms)
+- No code duplication required
+
+### LangGraph State Machine
+
+**Default Flow (max_attempts=1):**
+```
+START
+  ↓
+Retrieval Node (Weaviate BM25)
+  ↓
+Authorization Node (SpiceDB) ◄── Security Boundary (deterministic)
+  ↓
+Generation Node (LLM with context + explanations)
+  ↓
+END
+```
+
+### State Schema
+
+```python
+AgenticRAGState = TypedDict("AgenticRAGState", {
+    # Input
+    "query": str,
+    "subject_id": str,
+    "max_attempts": int,
+
+    # Tracking
+    "messages": List[BaseMessage],
+    "reasoning": List[str],
+    "retrieval_attempt": int,
+
+    # Documents
+    "retrieved_documents": List[Document],
+    "authorized_documents": List[Document],
+    "denied_count": int,
+
+    # Results
+    "authorization_passed": bool,
+    "answer": str,
+})
+```
+
+## Node Responsibilities
+
+### Retrieval Node (Deterministic)
+
+**Purpose**: Execute semantic/keyword search in Weaviate.
+
+**Input**: `query` from state
+
+**Operation**:
+- Weaviate BM25 keyword search (default)
+- Returns top-k documents (typically 5)
+- No authorization filtering at this stage
+- Direct execution without planning overhead
+
+**Output**: Updates `retrieved_documents`, `retrieval_attempt`
+
+Note: This node runs immediately on query input. There is no planning phase before retrieval.
+
+### Authorization Node (Deterministic - Security Boundary)
+
+**Purpose**: Filter documents by permissions using SpiceDB.
+
+**Critical property**: This node ALWAYS runs and cannot be bypassed by the agent.
+
+**Operation**:
+```python
+authorized = []
+denied_count = 0
+
+for doc in retrieved_documents:
+    response = spicedb_client.CheckPermission(
+        resource=f"document:{doc.id}",
+        permission="view",
+        subject=f"user:{subject_id}"
+    )
+
+    if response.permissionship == HAS_PERMISSION:
+        authorized.append(doc)
+    else:
+        denied_count += 1
+
+return {
+    "authorized_documents": authorized,
+    "denied_count": denied_count,
+    "authorization_passed": len(authorized) > 0
+}
+```
+
+**Output**: Updates `authorized_documents`, `denied_count`, `authorization_passed`
+
+### Generation Node (LLM-based)
+
+**Purpose**: Generate final answer incorporating authorization context.
+
+**Input**: `query`, `authorized_documents`, `denied_count`, `reasoning`
+
+**Behavior:**
+- Uses authorized documents as context for answer
+- Mentions if documents were denied (transparency)
+- Explains access limitations when applicable
+- Provides helpful answer within authorization constraints
+- Always runs (even if no authorized documents)
+
+**Output**: Updates `answer`
+
+Note: This is the only node that always uses the LLM in default mode (max_attempts=1). It handles both successful retrievals and authorization failures with appropriate explanations.
+
+## Authorization Model (SpiceDB)
+
+### Schema Definition
+
+```zed
+definition user {}
+
+definition department {
+    relation member: user
+}
+
+definition document {
+    relation viewer: user | department#member
+    permission view = viewer
+}
+```
+
+### Permission Check Flow
+
+```
+1. User makes query
+   subject_id: "alice"
+
+2. Weaviate retrieves documents
+   [eng-001, eng-002, hr-001]
+
+3. For each document, SpiceDB checks:
+
+   eng-001:
+   └─ viewer = engineering#member
+      └─ alice is engineering#member?
+         └─ alice → engineering → member ✅
+         Result: ALLOWED
+
+   hr-001:
+   └─ viewer = hr_manager
+      └─ alice is hr_manager?
+         └─ alice ≠ hr_manager ❌
+         Result: DENIED
+```
+
+### Relationship Graph Example
+
+```
+alice (user) ──member──> engineering (department)
+
+eng-001 (document) ──viewer──> engineering#member
+                               (allows all engineering members)
+
+hr-001 (document) ──viewer──> hr_manager (user)
+                              (allows only hr_manager)
+```
+
+## Security Architecture
+
+### Trust Boundaries
+
+**With Web Interface:**
+
+```
+┌───────────────────────────────────┐
+│       Untrusted Zone              │
+│  Browser, User Input              │
+│  - User selects identity          │
+│  - User enters query              │
+└─────────────┬─────────────────────┘
+              ▼
+┌───────────────────────────────────┐
+│   API Layer (Demo: No Auth)       │
+│  FastAPI Backend                  │
+│  - Request validation             │
+│  - CORS protection                │
+│  - Response formatting            │
+│  ⚠️  Production needs auth here   │
+└─────────────┬─────────────────────┘
+              ▼
+┌───────────────────────────────────┐
+│   Semi-Trusted Zone               │
+│  LangGraph Agent                  │
+│  - Can plan strategies            │
+│  - Can check permissions          │
+│  - Cannot bypass auth             │
+└─────────────┬─────────────────────┘
+              ▼
+┌───────────────────────────────────┐
+│   SECURITY BOUNDARY               │
+│  Authorization Node               │
+│  - Deterministic                  │
+│  - Always runs                    │
+│  - No LLM involvement             │
+│  - SpiceDB permission checks      │
+└─────────────┬─────────────────────┘
+              ▼
+┌───────────────────────────────────┐
+│    Trusted Zone                   │
+│  SpiceDB + Weaviate               │
+│  Authorized data                  │
+└───────────────────────────────────┘
+```
+
+**CLI Interface (Direct Access):**
+
+```
+┌───────────────────────────┐
+│    Untrusted Zone         │
+│  User Input, Query        │
+└──────────┬────────────────┘
+           ▼
+┌───────────────────────────┐
+│   Semi-Trusted Zone       │
+│  Agent (LLM) + Tools      │
+│  - Can plan strategies    │
+│  - Can check permissions  │
+│  - Cannot bypass auth     │
+└──────────┬────────────────┘
+           ▼
+┌───────────────────────────┐
+│   SECURITY BOUNDARY       │
+│  Authorization Node       │
+│  - Deterministic          │
+│  - Always runs            │
+│  - No LLM involvement     │
+└──────────┬────────────────┘
+           ▼
+┌───────────────────────────┐
+│    Trusted Zone           │
+│  SpiceDB + Weaviate       │
+│  Authorized data          │
+└───────────────────────────┘
+```
+
+### Security Guarantees
+
+1. **Authorization cannot be bypassed**
+   ```python
+   # Hardcoded in graph.py
+   workflow.add_edge("retrieve", "authorize")
+   # Agent cannot skip this edge
+   ```
+
+2. **Deterministic permission checks**
+   ```python
+   # Not LLM-based, uses SpiceDB directly
+   response = spicedb_client.CheckPermission(...)
+   if response.permissionship == HAS_PERMISSION:
+       allow()
+   ```
+
+3. **Agent observes, doesn't control**
+   ```python
+   # Authorization happens first
+   authorize() → reason()
+   # Agent sees results, but doesn't make decisions
+   ```
+
+4. **Fail closed by default**
+   ```python
+   # Explicit permission required
+   if not explicitly_allowed:
+       deny()
+   ```
+
+## Conditional Logic
+
+### After Authorization: Generate or Reason?
+
+```python
+def should_reason_or_generate(state: AgenticRAGState) -> str:
+    if state["authorization_passed"]:
+        return "generate"  # Have docs, answer the query
+    else:
+        return "reason"    # No docs, agent decides what to do
+```
+
+### After Reasoning: Retry or Generate?
+
+```python
+def should_retry_or_generate(state: AgenticRAGState) -> str:
+    if (state["retrieval_attempt"] < state["max_attempts"]
+        and len(state["authorized_documents"]) == 0):
+        return "plan"      # Try again with different strategy
+    else:
+        return "generate"  # Give best answer we can
+```
+
+## Design Decisions
+
+### Why Post-Filter Authorization?
+
+**Alternative 1: Pre-filter (embed permissions in metadata)**
+```python
+# Query with permission filter
+query.where({"department": user_department})
+```
+Problems:
+- Limits search space (worse semantic results)
+- Stale permissions (metadata not always current)
+- Doesn't work with computed permissions
+
+**Alternative 2: Post-filter (this approach)**
+```python
+# 1. Search without constraints (best semantic results)
+docs = search(query)
+
+# 2. Filter by up-to-date permissions
+authorized = [d for d in docs if check_permission(d)]
+```
+Benefits:
+- Best semantic search results
+- Always current permissions
+- Works with complex authorization logic
+
+### Why LangGraph State Machine?
+
+**Alternative: Pure ReAct loop**
+```python
+while not done:
+    action = agent.choose_action()
+    result = execute(action)
+```
+Problems:
+- Agent controls flow (can skip steps)
+- Harder to enforce security boundary
+- Less observable
+
+**LangGraph approach:**
+```python
+# Explicit state machine
+workflow.add_edge("retrieve", "authorize")  # Always runs
+```
+Benefits:
+- Enforces authorization node
+- Observable state transitions
+- Easier to debug/audit
+
+### Why Deterministic Authorization Node?
+
+**Not this:**
+```python
+def authorize(state):
+    # Ask LLM to decide
+    decision = llm("Should user access this doc?")
+    return decision  # ❌ Non-deterministic
+```
+
+**This:**
+```python
+def authorize(state):
+    # Direct SpiceDB check
+    response = spicedb.CheckPermission(...)
+    return response.permissionship == HAS_PERMISSION  # ✅ Deterministic
+```
+
+**Reason:** Security decisions must be deterministic, auditable, and policy-based.
+
+## Modes of Operation
+
+### Default Mode (max_attempts=1)
+
+```
+Query
+  ↓
+Retrieve (BM25 search)
+  ↓
+Authorize (filter)
+  ↓
+Generate (with explanations)
+  ↓
+Answer
+```
+
+**Characteristics:**
+- Simple, predictable (3 nodes)
+- Fast (~3-4s total)
+- No retry logic
+- Transparent explanations of authorization
+- Single LLM call (generation only)
+- Deterministic retrieval strategy
+
+### Adaptive Mode (max_attempts > 1)
+
+```
+Query
+  ↓
+Retrieve
+  ↓
+Authorize ← Security boundary
+  ↓
+[Reason if needed] ← LLM decides retry
+  ↓
+Generate or Retry
+  ↓
+Answer + Reasoning Trace
+```
+
+**Characteristics:**
+- Can adapt to failures (4 nodes)
+- Slower (~5-8s with retries)
+- Retry logic when authorization fails
+- Rich reasoning traces
+- Multiple LLM calls (reasoning + generation)
+- Can try different retrieval approaches
+
+Note: Default mode is intentionally simple and deterministic, not highly agentic. Enable adaptive mode only when you need retry logic.
+
+## Extension Points
+
+### Adding New Nodes
+
+```python
+def custom_node(state: AgenticRAGState) -> dict:
+    # Custom logic
+    result = process(state["query"])
+    return {"custom_field": result}
+
+# Add to graph
+workflow.add_node("custom", custom_node)
+workflow.add_edge("authorize", "custom")
+workflow.add_edge("custom", "reason")
+```
+
+### Adding New Tools
+
+```python
+from langchain.tools import BaseTool
+
+class CustomTool(BaseTool):
+    name = "custom_tool"
+    description = "What this tool does"
+
+    def _run(self, query: str) -> str:
+        # Implementation
+        return result
+
+# Agent will have access in planning node
+```
+
+### Modifying Authorization Logic
+
+```python
+def authorization_node(state: AgenticRAGState):
+    # Add custom checks
+    if special_case(state["subject_id"]):
+        return special_authorization(state)
+
+    # Default SpiceDB logic
+    return spicedb_authorization(state)
+```
+
+### Extending the Web Interface
+
+**Adding New API Endpoints:**
+
+```python
+# In api/routes.py
+from fastapi import APIRouter
+
+@router.get("/documents")
+async def list_documents():
+    """List all documents with metadata."""
+    # Query Weaviate for all documents
+    # Return structured list
+    return {"documents": [...]}
+
+@router.get("/permissions/{subject_id}")
+async def get_user_permissions(subject_id: str):
+    """Get all documents accessible to a user."""
+    # Query SpiceDB for user's accessible documents
+    # Useful for authorization debugging
+    return {"accessible_documents": [...]}
+```
+
+**Adding Frontend Features:**
+
+The UI is a single HTML file with embedded CSS and JavaScript. To extend:
+
+1. **Add UI Section** (HTML):
+```html
+<div class="card" id="document-browser">
+    <h2>Document Browser</h2>
+    <div id="document-list"></div>
+</div>
+```
+
+2. **Add Styling** (CSS in `<style>` tag):
+```css
+#document-browser {
+    margin-top: 20px;
+}
+.document-item {
+    padding: 10px;
+    border-bottom: 1px solid #e5e7eb;
+}
+```
+
+3. **Add JavaScript Handler**:
+```javascript
+async function loadDocuments() {
+    const response = await fetch('/api/documents');
+    const data = await response.json();
+    displayDocuments(data.documents);
+}
+
+function displayDocuments(documents) {
+    const container = document.getElementById('document-list');
+    // Render documents
+}
+```
+
+**Custom Authentication:**
+
+To add API authentication for production:
+
+```python
+# In api/main.py or new api/auth.py
+from fastapi import Depends, HTTPException
+from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials
+import jwt
+
+security = HTTPBearer()
+
+async def verify_token(
+    credentials: HTTPAuthorizationCredentials = Depends(security)
+) -> dict:
+    """Verify JWT token and return user claims."""
+    try:
+        payload = jwt.decode(
+            credentials.credentials,
+            SECRET_KEY,
+            algorithms=["HS256"]
+        )
+        return payload
+    except jwt.InvalidTokenError:
+        raise HTTPException(status_code=401, detail="Invalid token")
+
+# In api/routes.py
+@router.post("/query")
+async def execute_query(
+    request: QueryRequest,
+    user: dict = Depends(verify_token)
+):
+    # Use authenticated user identity
+    result = await run_agentic_rag_async(
+        query=request.query,
+        subject_id=user["sub"],  # From JWT, not client
+        max_attempts=request.max_attempts,
+    )
+    # ... format and return response
+```
+
+**Custom Response Formatters:**
+
+To change how documents are presented in the API:
+
+```python
+# In api/routes.py or new api/formatters.py
+def format_document_detailed(doc: Document) -> dict:
+    """Custom document formatter with more metadata."""
+    return {
+        "doc_id": doc.metadata["doc_id"],
+        "title": doc.metadata["title"],
+        "department": doc.metadata.get("department"),
+        "content_preview": doc.page_content[:300],
+        "content_length": len(doc.page_content),
+        "retrieval_score": doc.metadata.get("score"),
+        "timestamp": doc.metadata.get("created_at"),
+    }
+```
+
+## Project Structure
+
+```
+agentic-rag-weaviate/
+├── agentic_rag/               # Core RAG engine
+│   ├── graph.py               # LangGraph state machine (sync + async entry points)
+│   ├── state.py               # AgenticRAGState TypedDict definition
+│   ├── config.py              # Configuration management (env vars)
+│   ├── nodes/
+│   │   ├── retrieval_node.py  # Weaviate BM25 search
+│   │   ├── authorization_node.py  # SpiceDB filtering (security boundary)
+│   │   ├── reasoning_node.py  # Optional: adaptive retry logic
+│   │   └── generation_node.py # Final answer with context
+│   ├── authorization_helpers.py  # Batch permission checking
+│   ├── weaviate_client.py     # Connection pooling for Weaviate
+│   ├── grpc_helpers.py        # Connection pooling for SpiceDB
+│   ├── logging_config.py      # Structured JSON logging
+│   ├── node_helpers.py        # Shared utilities for nodes
+│   └── validation.py          # Input validation and sanitization
+│
+├── api/                       # FastAPI web backend
+│   ├── main.py                # FastAPI app entry point, CORS, static files
+│   ├── routes.py              # API route handlers (query, users, health)
+│   ├── models.py              # Pydantic request/response models
+│   └── config.py              # API configuration (CORS origins, prefix)
+│
+├── ui/                        # Web frontend
+│   └── index.html             # Single-page app (HTML/CSS/JS, 544 lines)
+│
+├── examples/                  # Demo scripts
+│   ├── setup_environment.py   # Initialize data (loads 50 documents + permissions)
+│   └── basic_example.py       # 8 demo scenarios (CLI-based)
+│
+├── scripts/                   # Utility scripts
+│   ├── parse_documents.py     # Parse documents into structured objects
+│   └── verify_permissions.py  # Test authorization patterns
+│
+├── tests/                     # Test suite
+│   ├── conftest.py            # Pytest fixtures
+│   └── test_basic_flow.py     # Integration tests
+│
+├── data/
+│   ├── documents/             # 50 .txt files (5 departments × 10 docs)
+│   ├── schema.zed             # SpiceDB permission schema
+│   └── PERMISSIONS.md         # Permission matrix and patterns
+│
+├── run_ui.py                  # Web UI launcher with pre-flight checks
+├── docker-compose.yml         # Weaviate + SpiceDB services
+├── requirements.txt           # Python dependencies (includes fastapi, uvicorn)
+├── .env.example               # Environment variable template
+├── README.md                  # Overview, quick start, usage guide
+└── ARCHITECTURE.md            # This file: deep technical dive
+```
+
+### Key Files by Interface
+
+**CLI Interface:**
+- Entry: `agentic_rag/graph.py::run_agentic_rag()`
+- Examples: `examples/basic_example.py`
+- Tests: `tests/test_basic_flow.py`
+
+**Web Interface:**
+- Launcher: `run_ui.py`
+- Backend: `api/main.py`, `api/routes.py`
+- Frontend: `ui/index.html`
+- Entry: `agentic_rag/graph.py::run_agentic_rag_async()`
+
+**Shared Core:**
+- State machine: `agentic_rag/graph.py`
+- Nodes: `agentic_rag/nodes/*.py`
+- Services: `agentic_rag/weaviate_client.py`, `agentic_rag/grpc_helpers.py`
+
+## Performance Characteristics
+
+### CLI Interface Performance
+
+**Default Mode (max_attempts=1):**
+```
+Query → Retrieval → Authorization → Generation
+        ~0.5-1s     ~40-50ms       ~2-3s
+```
+**Total**: ~3-4 seconds per query
+
+**Adaptive Mode (max_attempts > 1, with retry):**
+```
+Query → Retrieval → Authorization → Reasoning → Retrieval → Authorization → Generation
+        ~0.5-1s     ~40-50ms       ~1-2s       ~0.5-1s     ~40-50ms       ~2-3s
+```
+**Total**: ~5-8 seconds per query (depends on retry count)
+
+### Web Interface Performance
+
+**API Request Overhead:**
+```
+Browser → FastAPI → LangGraph → Response Formatting → Browser
+          ~10-20ms  ~3-4s       ~5-10ms              ~5-10ms
+```
+**Total**: ~3.5-4.5 seconds per query (default mode)
+
+**Breakdown:**
+- Network latency (localhost): ~5-10ms
+- Pydantic request validation: ~2-5ms
+- LangGraph execution: ~3-4s (same as CLI)
+- Document formatting: ~3-5ms
+- Response serialization (JSON): ~2-3ms
+- Network response: ~5-10ms
+
+**Under Load (Multiple Concurrent Queries):**
+
+Async execution allows concurrent query handling:
+
+- **Single query**: ~3.5-4.5s
+- **5 concurrent queries**: ~4-5s each (minimal overhead)
+- **10 concurrent queries**: ~5-6s each (slight queueing at OpenAI)
+
+**Bottlenecks:**
+1. OpenAI API calls (~2-3s) - most significant
+2. Weaviate search (~0.5-1s)
+3. SpiceDB checks (~40-50ms for 3-5 documents)
+4. API/network overhead (~30-50ms total)
+
+**Async Benefits Demonstrated:**
+
+Without async (hypothetical):
+- Query 1: 0s → 4s
+- Query 2: 4s → 8s (blocked behind query 1)
+- Query 3: 8s → 12s (blocked behind queries 1 & 2)
+
+With async (actual):
+- Query 1: 0s → 4s
+- Query 2: 0s → 4.2s (concurrent)
+- Query 3: 0s → 4.5s (concurrent)
+
+### Optimization Opportunities
+
+1. **Batch permission checks**
+   ```python
+   # Instead of N individual checks
+   results = spicedb.BulkCheckPermission(documents)
+   ```
+
+2. **Cache permission results**
+   ```python
+   @lru_cache(maxsize=1000)
+   def check_permission(subject, resource):
+       return spicedb.CheckPermission(...)
+   ```
+
+3. **Parallel agent calls**
+   ```python
+   # Run planning and permission checks in parallel
+   await asyncio.gather(
+       agent.plan(),
+       check_permissions()
+   )
+   ```
+
+## Observability
+
+### State Tracking
+
+Every node updates the state with:
+- `messages`: What happened (for debugging)
+- `reasoning`: Why it happened (agent's thought process)
+- Metrics: counts, attempts, etc.
+
+### Example Message Flow
+
+```
+[AIMessage] Planning: Searching for engineering documents...
+[SystemMessage] Retrieved 3 documents from Weaviate
+[SystemMessage] Authorization: 2/3 documents authorized (1 denied)
+[AIMessage] Reasoning: User has partial access, generating answer from available docs
+[AIMessage] Answer: Based on the 2 authorized documents...
+```
+
+### Debugging (CLI)
+
+```python
+# Print state at each step
+for event in graph.stream(initial_state):
+    print(f"Node: {event}")
+    print(f"State: {state}")
+```
+
+### API Request Tracing
+
+The web interface provides additional observability layers:
+
+**Frontend Observability:**
+
+Users see transparent authorization information:
+
+```javascript
+// Displayed in browser UI
+{
+  "answer": "Based on the engineering documents...",
+  "authorized_documents": [
+    {
+      "doc_id": "eng-001",
+      "title": "System Architecture Guide",
+      "content_preview": "Our system uses microservices..."
+    },
+    {
+      "doc_id": "eng-002",
+      "title": "API Design Standards",
+      "content_preview": "RESTful API guidelines..."
+    }
+  ],
+  "denied_documents": [
+    {
+      "doc_id": "hr-001",
+      "title": "Employee Handbook",
+      "reason": "User 'alice' does not have permission to access this document"
+    }
+  ],
+  "stats": {
+    "retrieved_count": 3,
+    "authorized_count": 2,
+    "denied_count": 1,
+    "retrieval_attempts": 1,
+    "execution_time_ms": 3420
+  }
+}
+```
+
+**Visual Indicators:**
+- Green cards for authorized documents (doc_id, title, preview)
+- Red cards for denied documents (doc_id, title, reason)
+- Statistics panel showing counts and timing
+- Loading spinner during execution
+
+**Backend Observability:**
+
+API layer provides structured response format:
+
+```python
+# api/routes.py
+@router.post("/query")
+async def execute_query(request: QueryRequest) -> APIResponse:
+    start_time = time.time()
+
+    try:
+        result = await run_agentic_rag_async(...)
+        execution_time_ms = int((time.time() - start_time) * 1000)
+
+        # Format response with full observability
+        return APIResponse(
+            success=True,
+            data=QueryResponseData(
+                query=result["query"],
+                subject_id=result["subject_id"],
+                answer=result["answer"],
+                authorized_documents=[...],  # Formatted
+                denied_documents=[...],      # Extracted
+                stats=QueryStats(
+                    retrieved_count=...,
+                    authorized_count=...,
+                    denied_count=...,
+                    retrieval_attempts=...,
+                    execution_time_ms=execution_time_ms
+                )
+            )
+        )
+    except Exception as e:
+        return APIResponse(
+            success=False,
+            error={
+                "code": "EXECUTION_ERROR",
+                "message": str(e)
+            }
+        )
+```
+
+**Logging Opportunities:**
+
+Add structured logging to API layer for production observability:
+
+```python
+import structlog
+
+logger = structlog.get_logger()
+
+@router.post("/query")
+async def execute_query(request: QueryRequest):
+    logger.info(
+        "query_start",
+        subject_id=request.subject_id,
+        query_length=len(request.query),
+        max_attempts=request.max_attempts,
+    )
+
+    start_time = time.time()
+    result = await run_agentic_rag_async(...)
+    execution_time_ms = int((time.time() - start_time) * 1000)
+
+    logger.info(
+        "query_complete",
+        subject_id=request.subject_id,
+        retrieved_count=len(result["retrieved_documents"]),
+        authorized_count=len(result["authorized_documents"]),
+        denied_count=result["denied_count"],
+        execution_time_ms=execution_time_ms,
+    )
+
+    return response
+```
+
+**Monitoring Metrics to Track:**
+
+For production deployment, consider tracking:
+
+1. **Performance Metrics:**
+   - API response time (p50, p95, p99)
+   - LangGraph execution time
+   - Individual node execution times
+   - OpenAI API latency
+
+2. **Authorization Metrics:**
+   - Authorization pass rate (per user)
+   - Average denied documents per query
+   - Most frequently denied documents
+   - Permission check latency
+
+3. **Usage Metrics:**
+   - Queries per user per day
+   - Query length distribution
+   - Most queried topics
+   - Concurrent request count
+
+4. **Error Metrics:**
+   - API error rate
+   - Validation failures
+   - OpenAI API errors
+   - Service connectivity failures (Weaviate, SpiceDB)
+
+## Summary
+
+This architecture demonstrates:
+
+1. **Security**: Deterministic authorization that cannot be bypassed by the agent or API layer
+2. **Flexibility**: Agent adapts strategies when authorization fails (adaptive mode)
+3. **Transparency**: Clear reasoning about what was allowed/denied, visible in both CLI and web UI
+4. **Observability**: Full state tracking through the flow, with rich metrics in the API
+5. **Extensibility**: Easy to add nodes, tools, API endpoints, or custom logic
+6. **Dual Interface**: Same core engine powers both CLI (sync) and web UI (async) interfaces
+7. **Production-Ready Patterns**: Demonstrates proper separation of concerns, though API auth needed for production
+
+The key insights:
+
+**Agentic behavior and security guarantees are compatible.** The agent provides flexibility and explanation AFTER the security boundary, not as a replacement for it.
+
+**Interface flexibility doesn't compromise security.** Whether accessed via CLI or web UI, the authorization node always runs and enforces document-level permissions deterministically.
+
+**Transparency builds trust.** By showing users exactly what they can and cannot access (and why), the system demonstrates how fine-grained authorization works in RAG systems, educating users about the security model.
diff --git a/agentic-rag-authorization/README.md b/agentic-rag-authorization/README.md
new file mode 100644
index 0000000..2fbdf0a
--- /dev/null
+++ b/agentic-rag-authorization/README.md
@@ -0,0 +1,292 @@
+# Agentic RAG with Fine-Grained Authorization
+
+
+This repository demonstrates how to combine agentic behavior with deterministic fine-grained authorization using LangGraph, SpiceDB, and Weaviate. You'll learn to build RAG systems where a user can view information only based on the documents they have access to.
+
+This project uses the [LangChain SpiceDB](https://pypi.org/project/langchain-spicedb/) library
+
+![screengrab](agentic-rag.gif)
+
+## Documentation Navigation
+
+- **[README.md](README.md)** (you are here) - Overview, quick start, core concepts
+- **[ARCHITECTURE.md](ARCHITECTURE.md)** - Deep dive into system design, security model, and trade-offs
+- **[data/PERMISSIONS.md](data/PERMISSIONS.md)** - Permission matrix and authorization patterns
+
+## What You'll Learn
+
+This repo demonstrates:
+
+1. **Fine-grained authorization in RAG** - How to enforce document-level permissions with SpiceDB to ensure the user only information based on what they have access to
+2. **Security architecture** - Deterministic authorization boundary that cannot be bypassed
+3. **Production features** - Structured logging, connection pooling, batch operations, error handling
+4. **Real-world complexity** - 50 documents, 4 permission patterns with hierarchies.
+
+Note: Despite the "agentic RAG" name, the default mode is intentionally simple and deterministic (3 nodes: retrieve → authorize → generate). This provides fast, predictable behavior suitable for most use cases.
+
+## The Problem This Solves
+
+Traditional RAG retrieves documents by semantic similarity without considering permissions. This creates two issues:
+
+1. **Security risk**: Users might see documents they shouldn't access
+2. **Poor UX**: Silent failures when documents are denied, with no explanation
+
+Read the [OWASP Top 10 for LLM](https://owasp.org/www-project-top-10-for-large-language-model-applications/) and [OWASP Top 10 Risks to Web Apps](https://owasp.org/Top10/2025/A01_2025-Broken_Access_Control/) for more information on why access control matters.
+
+## The Solution
+
+This implementation shows how to combine:
+- **Retrieval-first approach**: Direct semantic/keyword search without upfront planning overhead
+- **Deterministic security**: SpiceDB authorization that cannot be bypassed
+- **Transparency**: Users understand what they can/can't access and why
+
+```
+Traditional RAG:  Query → Retrieve → Generate
+                           ↓
+                    (no permission checks)
+
+This approach (default):  Query → Retrieve → [SpiceDB Authorizes] → Generate
+                                               ↓
+                                       Security boundary
+```
+
+## Quick Example
+
+```bash
+# Alice (engineering department) queries engineering docs
+Query: "What are our system architecture best practices?"
+User: alice
+
+Result:
+✅ Retrieved: 3 documents via semantic search
+✅ Authorized: 2 documents (eng-001, eng-002)
+❌ Denied: 1 document (hr-001)
+
+Answer: "Based on the engineering documents, our system uses microservices
+architecture with event-driven patterns..."
+```
+
+```bash
+# Bob (sales department) queries engineering docs
+Query: "What are our system architecture best practices?"
+User: bob
+
+Result:
+✅ Retrieved: 3 documents
+❌ Authorized: 0 documents
+❌ Denied: 3 documents
+
+Answer: "I don't have access to the engineering documents needed to answer
+this question. This information is restricted to the engineering department."
+```
+
+The agent transparently explains access limitations instead of failing silently.
+
+## Setup (5 minutes)
+
+### Prerequisites
+- Docker & Docker Compose
+- Python 3.11+
+- OpenAI API key
+
+### Steps
+
+```bash
+# 1. Start services
+docker-compose up -d
+
+# 2. Install dependencies
+python3 -m venv venv
+source venv/bin/activate
+pip install -r requirements.txt
+
+# 3. Configure
+cp .env.example .env
+# Edit .env with your actual OpenAI API key (never commit .env!)
+
+# 4. Initialize data
+python3 examples/setup_environment.py
+
+# 5. Run demo
+python3 examples/basic_example.py
+```
+
+
+## Web UI
+
+A web interface is available to demonstrate the authorization capabilities interactively.
+
+### Quick Start
+
+```bash
+# 1. Ensure services are running and data is initialized
+docker-compose up -d
+python3 examples/setup_environment.py  # If not already done
+
+# 2. Install web dependencies
+pip install -r requirements.txt  # Includes fastapi and uvicorn
+
+# 3. Launch UI (includes pre-flight checks)
+python3 run_ui.py
+```
+
+The launcher will:
+- ✅ Check that Weaviate, SpiceDB, and OpenAI are configured
+- ✅ Verify documents are loaded
+- 🚀 Start the FastAPI server
+- 🌐 Open your browser to http://localhost:8000
+
+### Manual Start
+
+```bash
+# Terminal 1: Start services (if not running)
+docker-compose up -d
+
+# Terminal 2: Start API server
+uvicorn api.main:app --reload --host 0.0.0.0 --port 8000
+
+# Browser
+open http://localhost:8000
+```
+
+## How It Works
+
+### 1. Authorization Model (SpiceDB)
+
+```zed
+definition user {}
+
+definition department {
+    relation member: user
+}
+
+definition document {
+    relation viewer: user | department#member
+    permission view = viewer
+}
+```
+
+**Relationships:**
+- `alice` is a member of `engineering` department
+- `eng-001` document has viewer = `engineering#member`
+- Result: alice can view eng-001 ✅
+
+### 2. State Flow
+
+**Default Mode**
+```
+User Query
+    ↓
+Retrieval Node ← Weaviate BM25 keyword search
+    ↓
+Authorization Node ← SpiceDB filters (SECURITY BOUNDARY - cannot be bypassed)
+    ↓
+Generation Node ← Answer with authorized context + explanations
+```
+
+### 3. Security Guarantees
+
+- **Authorization always runs**: Hardcoded in LangGraph workflow, agent cannot skip
+- **Deterministic checks**: SpiceDB enforces permissions (no LLM involved)
+- **Fail closed**: Access denied unless explicitly granted
+- **Observable**: Full audit trail in state
+
+## Project Structure
+
+```
+agentic-rag-weaviate/
+├── agentic_rag/
+│   ├── graph.py               # LangGraph state machine
+│   ├── state.py               # State schema
+│   ├── config.py              # Configuration management
+│   ├── nodes/
+│   │   ├── retrieval_node.py  # Weaviate BM25 search
+│   │   ├── authorization_node.py  # SpiceDB filtering (security boundary)
+│   │   ├── reasoning_node.py  # Optional: adaptive retry logic
+│   │   └── generation_node.py # Final answer with context
+│   ├── authorization_helpers.py  # Batch permission checking
+│   ├── weaviate_client.py     # Connection pooling for Weaviate
+│   ├── grpc_helpers.py        # Connection pooling for SpiceDB
+│   ├── logging_config.py      # Structured JSON logging
+│   └── validation.py          # Input validation and sanitization
+├── examples/
+│   ├── setup_environment.py   # Initialize data (loads 50 documents)
+│   └── basic_example.py       # 8 demo scenarios
+├── scripts/
+│   ├── generate_documents.py  # Generate 50 .txt files
+│   ├── parse_documents.py     # Parse documents into objects
+│   └── verify_permissions.py  # Test authorization patterns
+├── data/
+│   ├── documents/             # 50 .txt files (5 departments)
+│   ├── schema.zed             # SpiceDB permission schema
+│   └── PERMISSIONS.md         # Permission matrix
+└── docker-compose.yml         # Weaviate + SpiceDB
+```
+
+## Configuration
+
+Environment variables (`.env`):
+
+```bash
+# Required
+OPENAI_API_KEY=sk-...
+
+# Optional (defaults shown)
+WEAVIATE_URL=http://localhost:8080
+SPICEDB_ENDPOINT=localhost:50051
+SPICEDB_TOKEN=devtoken
+MAX_RETRIEVAL_ATTEMPTS=3
+```
+
+## Dataset Overview
+
+The repository includes a realistic 50-document dataset across 5 departments.
+
+**Authorization Patterns:**
+1. Department-based access (primary pattern)
+2. Cross-department collaboration (3 shared documents)
+3. Individual user exceptions (3 special grants)
+4. Public documents (accessible to all users)
+
+See [data/PERMISSIONS.md](data/PERMISSIONS.md) for the complete permission matrix.
+
+## Sample Scenarios
+
+The `examples/basic_example.py` demonstrates 8 scenarios:
+
+1. **Department Access** - alice queries engineering documents
+2. **Access Denial** - bob attempts to access engineering documents
+3. **Cross-Department** - bob accesses shared architecture document
+4. **Individual Exception** - alice accesses sales proposal (special grant)
+5. **Public Access** - Anyone can access company handbooks
+6. **Finance Department** - finance_manager queries financial reports
+7. **HR Department** - hr_manager queries HR policies
+8. **Transparent Explanations** - Agent explains why access was denied
+
+## Contributing & Extending
+
+See [CONTRIBUTING.md](CONTRIBUTING.md) for:
+- Development setup
+- Adding documents and permissions
+- Customizing agent behavior
+- Extending the system
+
+## Testing
+
+```bash
+# Run all tests
+pytest tests/
+
+# Run specific test
+pytest tests/test_basic_flow.py::test_authorized_access
+```
+
+## Learn More
+
+- **SpiceDB**: https://authzed.com/docs
+- **Weaviate**: https://weaviate.io/developers/weaviate
+- **LangGraph**: https://langchain-ai.github.io/langgraph/
+
+## License
+
+MIT
diff --git a/agentic-rag-authorization/agentic-rag.gif b/agentic-rag-authorization/agentic-rag.gif
new file mode 100644
index 0000000..5fb3218
Binary files /dev/null and b/agentic-rag-authorization/agentic-rag.gif differ
diff --git a/agentic-rag-authorization/agentic_rag/__init__.py b/agentic-rag-authorization/agentic_rag/__init__.py
new file mode 100644
index 0000000..0531d2b
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/__init__.py
@@ -0,0 +1,9 @@
+"""Agentic RAG with fine-grained authorization using Weaviate and SpiceDB."""
+
+__version__ = "0.1.0"
+
+# Initialize structured logging on module import
+from .logging_config import setup_logging
+from .config import get_config
+
+setup_logging(level=get_config().log_level)
diff --git a/agentic-rag-authorization/agentic_rag/authorization_helpers.py b/agentic-rag-authorization/agentic_rag/authorization_helpers.py
new file mode 100644
index 0000000..be7766c
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/authorization_helpers.py
@@ -0,0 +1,105 @@
+"""Helper functions for authorization operations."""
+
+from typing import List, Tuple
+from authzed.api.v1 import (
+    CheckBulkPermissionsRequest,
+    CheckBulkPermissionsRequestItem,
+    ObjectReference,
+    SubjectReference,
+    Client,
+)
+from langchain_core.documents import Document
+from .logging_config import get_logger
+
+logger = get_logger("authorization_helpers")
+
+
+def batch_check_permissions(
+    client: Client,
+    subject_id: str,
+    documents: List[Document],
+) -> Tuple[List[Document], List[str]]:
+    """
+    Check permissions for multiple documents using SpiceDB's bulk API.
+
+    Uses CheckBulkPermissions for efficient batch checking in a single request.
+    This is 5-10x faster than sequential individual permission checks.
+
+    Args:
+        client: SpiceDB client
+        subject_id: User/subject ID to check permissions for
+        documents: List of documents to check permissions for
+
+    Returns:
+        Tuple of (authorized_documents, denied_doc_ids)
+    """
+    if not documents:
+        return [], []
+
+    logger.debug(
+        "Starting batch permission check",
+        extra={
+            "subject_id": subject_id,
+            "document_count": len(documents),
+        },
+    )
+
+    try:
+        # Build bulk request items
+        items = []
+        for doc in documents:
+            doc_id = doc.metadata.get("doc_id")
+            items.append(
+                CheckBulkPermissionsRequestItem(
+                    resource=ObjectReference(object_type="document", object_id=doc_id),
+                    permission="view",
+                    subject=SubjectReference(
+                        object=ObjectReference(object_type="user", object_id=subject_id)
+                    ),
+                )
+            )
+
+        # Single bulk request to SpiceDB
+        request = CheckBulkPermissionsRequest(items=items)
+        response = client.CheckBulkPermissions(request)
+
+        # Process results
+        authorized_docs = []
+        denied_doc_ids = []
+
+        for i, pair in enumerate(response.pairs):
+            doc = documents[i]
+            doc_id = doc.metadata.get("doc_id")
+
+            # Check if permission is granted
+            # permissionship: 0=UNSPECIFIED, 1=NO_PERMISSION, 2=HAS_PERMISSION
+            if pair.item.permissionship == 2:
+                authorized_docs.append(doc)
+            else:
+                denied_doc_ids.append(doc_id)
+
+        logger.debug(
+            "Batch permission check complete",
+            extra={
+                "subject_id": subject_id,
+                "authorized": len(authorized_docs),
+                "denied": len(denied_doc_ids),
+            },
+        )
+
+        return authorized_docs, denied_doc_ids
+
+    except Exception as e:
+        logger.error(
+            "Batch permission check failed",
+            extra={
+                "subject_id": subject_id,
+                "error": str(e),
+                "error_type": type(e).__name__,
+            },
+            exc_info=True,
+        )
+
+        # Fail closed - treat error as all denied (security-safe default)
+        denied_doc_ids = [doc.metadata.get("doc_id", "unknown") for doc in documents]
+        return [], denied_doc_ids
diff --git a/agentic-rag-authorization/agentic_rag/config.py b/agentic-rag-authorization/agentic_rag/config.py
new file mode 100644
index 0000000..63bbab8
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/config.py
@@ -0,0 +1,50 @@
+"""Configuration management for agentic RAG system."""
+
+from dataclasses import dataclass
+from functools import lru_cache
+from typing import Optional
+import os
+from dotenv import load_dotenv
+
+load_dotenv()
+
+
+@dataclass
+class Config:
+    """Configuration for agentic RAG system."""
+
+    # Weaviate
+    weaviate_url: str
+    weaviate_api_key: Optional[str]
+
+    # SpiceDB
+    spicedb_endpoint: str
+    spicedb_token: str
+
+    # OpenAI
+    openai_api_key: str
+
+    # Agent behavior
+    max_retrieval_attempts: int = 1
+
+    # Logging
+    log_level: str = "INFO"
+
+    @classmethod
+    def from_env(cls):
+        """Load configuration from environment variables."""
+        return cls(
+            weaviate_url=os.getenv("WEAVIATE_URL", "http://localhost:8080"),
+            weaviate_api_key=os.getenv("WEAVIATE_API_KEY"),
+            spicedb_endpoint=os.getenv("SPICEDB_ENDPOINT", "localhost:50051"),
+            spicedb_token=os.getenv("SPICEDB_TOKEN", "devtoken"),
+            openai_api_key=os.getenv("OPENAI_API_KEY", ""),
+            max_retrieval_attempts=int(os.getenv("MAX_RETRIEVAL_ATTEMPTS", "1")),
+            log_level=os.getenv("LOG_LEVEL", "INFO"),
+        )
+
+
+@lru_cache
+def get_config() -> Config:
+    """Get cached configuration instance."""
+    return Config.from_env()
diff --git a/agentic-rag-authorization/agentic_rag/graph.py b/agentic-rag-authorization/agentic_rag/graph.py
new file mode 100644
index 0000000..eb980bf
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/graph.py
@@ -0,0 +1,192 @@
+"""LangGraph state machine for agentic RAG with authorization."""
+
+from langgraph.graph import StateGraph, END
+from .state import AgenticRAGState
+from .nodes import (
+    retrieval_node,
+    authorization_node,
+    reasoning_node,
+    generation_node,
+)
+from .validation import validate_query, validate_subject_id, ValidationError
+
+
+def should_retry_or_generate(state: AgenticRAGState) -> str:
+    """Decide whether to retry retrieval or generate answer.
+
+    After reasoning about authorization failures, decide:
+    - If attempts remain and no authorized docs: retry retrieval
+    - Otherwise: generate answer (possibly explaining access denial)
+    """
+    if (
+        state["retrieval_attempt"] < state["max_attempts"]
+        and len(state["authorized_documents"]) == 0
+    ):
+        return "retrieve"
+    return "generate"
+
+
+def should_reason_or_generate(state: AgenticRAGState) -> str:
+    """Decide whether to reason about failures or generate answer.
+
+    After authorization:
+    - If we have authorized documents: generate answer
+    - If no authorized documents AND attempts remain (max_attempts > 1): reason about what to do
+    - If no authorized documents AND no attempts remain: generate answer with explanation
+
+    Note: With max_attempts=1 (default), reasoning is skipped and we go directly to generation.
+    This is more efficient for simple use cases where retry isn't needed.
+    """
+    if state["authorization_passed"]:
+        return "generate"
+
+    # Only reason if we have attempts remaining (max_attempts > 1 and not exhausted)
+    if (
+        state["max_attempts"] > 1
+        and state["retrieval_attempt"] < state["max_attempts"]
+    ):
+        return "reason"
+
+    # Otherwise, generate answer (possibly explaining access denial)
+    return "generate"
+
+
+def build_agentic_rag_graph():
+    """Build the agentic RAG graph with deterministic authorization.
+
+    Simplified Flow:
+    1. Retrieval: Fetch documents from Weaviate
+    2. Authorization: Deterministic permission check (security boundary)
+    3. Conditional:
+       - If authorized docs exist: Generate answer
+       - If no authorized docs AND max_attempts > 1: Reason about retry strategy
+       - If no authorized docs AND max_attempts == 1: Generate answer (with explanation)
+    4. After reasoning (only with max_attempts > 1):
+       - If attempts remain: Retry retrieval
+       - Otherwise: Generate answer explaining constraints
+
+    Note: With max_attempts=1 (default), the flow is just 3 nodes:
+    Retrieve → Authorize → Generate
+    """
+    workflow = StateGraph(AgenticRAGState)
+
+    # Add nodes
+    workflow.add_node("retrieve", retrieval_node)
+    workflow.add_node("authorize", authorization_node)  # ALWAYS runs
+    workflow.add_node("reason", reasoning_node)
+    workflow.add_node("generate", generation_node)
+
+    # Define flow - start directly at retrieval
+    workflow.set_entry_point("retrieve")
+    workflow.add_edge("retrieve", "authorize")  # Deterministic auth
+
+    # Conditional: after auth, either reason or generate
+    workflow.add_conditional_edges(
+        "authorize",
+        should_reason_or_generate,
+        {
+            "reason": "reason",
+            "generate": "generate",
+        },
+    )
+
+    # Conditional: after reasoning, retry retrieval or generate
+    workflow.add_conditional_edges(
+        "reason",
+        should_retry_or_generate,
+        {
+            "retrieve": "retrieve",
+            "generate": "generate",
+        },
+    )
+
+    workflow.add_edge("generate", END)
+
+    return workflow.compile()
+
+
+def run_agentic_rag(query: str, subject_id: str, max_attempts: int = 1) -> dict:
+    """
+    Run the agentic RAG graph with input validation (synchronous).
+
+    This is the main entry point for running the agentic RAG system.
+    It validates inputs before processing to ensure security and stability.
+
+    Args:
+        query: User query string
+        subject_id: User/subject identifier for authorization
+        max_attempts: Maximum number of retrieval attempts (default 1)
+
+    Returns:
+        Final state dict with answer and metadata
+
+    Raises:
+        ValidationError: If inputs are invalid
+    """
+    # Validate inputs
+    query = validate_query(query)
+    subject_id = validate_subject_id(subject_id)
+
+    # Build graph
+    graph = build_agentic_rag_graph()
+
+    # Run graph
+    initial_state = {
+        "query": query,
+        "subject_id": subject_id,
+        "max_attempts": max_attempts,
+        "retrieved_documents": [],
+        "authorized_documents": [],
+        "denied_count": 0,
+        "reasoning": [],
+        "retrieval_attempt": 0,
+        "authorization_passed": False,
+        "messages": [],
+        "answer": None,
+    }
+
+    result = graph.invoke(initial_state)
+    return result
+
+
+async def run_agentic_rag_async(query: str, subject_id: str, max_attempts: int = 1) -> dict:
+    """
+    Run the agentic RAG graph with input validation (asynchronous).
+
+    Async version of run_agentic_rag for use in async contexts.
+
+    Args:
+        query: User query string
+        subject_id: User/subject identifier for authorization
+        max_attempts: Maximum number of retrieval attempts (default 1)
+
+    Returns:
+        Final state dict with answer and metadata
+
+    Raises:
+        ValidationError: If inputs are invalid
+    """
+    # Validate inputs
+    query = validate_query(query)
+    subject_id = validate_subject_id(subject_id)
+
+    # Build graph
+    graph = build_agentic_rag_graph()
+
+    # Run graph
+    initial_state = {
+        "query": query,
+        "subject_id": subject_id,
+        "max_attempts": max_attempts,
+        "retrieved_documents": [],
+        "authorized_documents": [],
+        "denied_count": 0,
+        "reasoning": [],
+        "retrieval_attempt": 0,
+        "authorization_passed": False,
+        "messages": [],
+        "answer": None,
+    }
+
+    result = await graph.ainvoke(initial_state)
+    return result
diff --git a/agentic-rag-authorization/agentic_rag/grpc_helpers.py b/agentic-rag-authorization/agentic_rag/grpc_helpers.py
new file mode 100644
index 0000000..2d73d80
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/grpc_helpers.py
@@ -0,0 +1,129 @@
+"""Helper functions for gRPC and SpiceDB authentication."""
+
+import grpc
+from threading import Lock
+from typing import Optional
+
+
+class BearerTokenInterceptor(grpc.UnaryUnaryClientInterceptor, grpc.UnaryStreamClientInterceptor):
+    """
+    gRPC interceptor that adds bearer token to all requests.
+
+    This is for local development with SpiceDB's --grpc-no-tls flag.
+    """
+
+    def __init__(self, token: str):
+        self._token = token
+
+    def _add_authorization(self, client_call_details):
+        """Add authorization metadata to the call."""
+        metadata = []
+        if client_call_details.metadata is not None:
+            metadata = list(client_call_details.metadata)
+        metadata.append(("authorization", f"Bearer {self._token}"))
+
+        return grpc._interceptor._ClientCallDetails(
+            client_call_details.method,
+            client_call_details.timeout,
+            metadata,
+            client_call_details.credentials,
+            client_call_details.wait_for_ready,
+            client_call_details.compression,
+        )
+
+    def intercept_unary_unary(self, continuation, client_call_details, request):
+        """Intercept unary-unary calls."""
+        new_details = self._add_authorization(client_call_details)
+        return continuation(new_details, request)
+
+    def intercept_unary_stream(self, continuation, client_call_details, request):
+        """Intercept unary-stream calls."""
+        new_details = self._add_authorization(client_call_details)
+        return continuation(new_details, request)
+
+
+# Global singleton for SpiceDB client with thread-safe initialization
+_spicedb_client: Optional["Client"] = None
+_spicedb_lock = Lock()
+
+
+def create_insecure_spicedb_client(endpoint: str, token: str):
+    """
+    Create a SpiceDB client for insecure connections (local development).
+
+    This is for SpiceDB running with --grpc-no-tls flag.
+
+    Args:
+        endpoint: The SpiceDB endpoint (e.g., "localhost:50051")
+        token: The bearer token (e.g., "devtoken")
+
+    Returns:
+        authzed.api.v1.Client configured for insecure connection
+    """
+    from authzed.api.v1 import Client
+
+    # Create insecure channel with bearer token interceptor
+    channel = grpc.insecure_channel(endpoint)
+    interceptor = BearerTokenInterceptor(token)
+    intercepted_channel = grpc.intercept_channel(channel, interceptor)
+
+    # Create client bypassing __init__ and initialize with our channel
+    client = Client.__new__(Client)
+    client.init_stubs(intercepted_channel)
+
+    return client
+
+
+def get_spicedb_client(endpoint: str, token: str):
+    """
+    Get or create reusable SpiceDB client (singleton, thread-safe).
+
+    This function provides connection pooling for SpiceDB by maintaining
+    a single client instance across requests, eliminating connection overhead.
+
+    Args:
+        endpoint: The SpiceDB endpoint (e.g., "localhost:50051")
+        token: The bearer token (e.g., "devtoken")
+
+    Returns:
+        authzed.api.v1.Client configured for insecure connection
+    """
+    from authzed.api.v1 import Client
+
+    global _spicedb_client
+
+    # Fast path: client already exists
+    if _spicedb_client is not None:
+        return _spicedb_client
+
+    # Slow path: create new client with thread-safe lock
+    with _spicedb_lock:
+        # Double-check after acquiring lock
+        if _spicedb_client is None:
+            _spicedb_client = create_insecure_spicedb_client(endpoint, token)
+
+    return _spicedb_client
+
+
+def reset_spicedb_client():
+    """
+    Reset singleton (useful for testing).
+
+    This allows tests to clear the cached client and create a fresh one.
+    """
+    global _spicedb_client
+    with _spicedb_lock:
+        _spicedb_client = None
+
+
+# Backward compatibility - keep the old function name
+def insecure_bearer_token_credentials(token: str):
+    """
+    Deprecated: Use create_insecure_spicedb_client instead.
+
+    This function is kept for backward compatibility but doesn't work
+    with authzed Client for insecure connections.
+    """
+    raise NotImplementedError(
+        "For insecure SpiceDB connections, use create_insecure_spicedb_client() instead"
+    )
diff --git a/agentic-rag-authorization/agentic_rag/logging_config.py b/agentic-rag-authorization/agentic_rag/logging_config.py
new file mode 100644
index 0000000..a7dbdfd
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/logging_config.py
@@ -0,0 +1,122 @@
+"""
+Centralized logging configuration for the Agentic RAG application.
+
+Provides structured JSON logging with context fields for debugging and audit trails.
+"""
+
+import logging
+import json
+import sys
+from datetime import datetime
+from typing import Any, Dict
+
+
+class StructuredFormatter(logging.Formatter):
+    """
+    Custom JSON formatter for structured logging.
+
+    Outputs logs in JSON format with timestamp, level, logger name, message,
+    and any extra context fields passed via the 'extra' parameter.
+    """
+
+    def format(self, record: logging.LogRecord) -> str:
+        """Format log record as JSON."""
+        log_data: Dict[str, Any] = {
+            "timestamp": datetime.utcnow().isoformat() + "Z",
+            "level": record.levelname,
+            "logger": record.name,
+            "message": record.getMessage(),
+        }
+
+        # Add extra context fields from record attributes
+        # Skip private/internal attributes
+        for key, value in record.__dict__.items():
+            if not key.startswith("_") and key not in [
+                "name",
+                "msg",
+                "args",
+                "created",
+                "filename",
+                "funcName",
+                "levelname",
+                "levelno",
+                "lineno",
+                "module",
+                "msecs",
+                "message",
+                "pathname",
+                "process",
+                "processName",
+                "relativeCreated",
+                "thread",
+                "threadName",
+                "exc_info",
+                "exc_text",
+                "stack_info",
+            ]:
+                # Only add simple JSON-serializable types
+                if isinstance(value, (str, int, float, bool, list, dict, type(None))):
+                    log_data[key] = value
+
+        # Add exception info if present
+        if record.exc_info:
+            log_data["exception"] = self.formatException(record.exc_info)
+
+        return json.dumps(log_data)
+
+
+class ContextAdapter(logging.LoggerAdapter):
+    """
+    Logger adapter that handles extra context fields.
+
+    Wraps the standard logger to properly handle the 'extra' parameter
+    and pass it to the StructuredFormatter.
+    """
+
+    def process(self, msg: str, kwargs: Dict[str, Any]) -> tuple:
+        """Process log call to add extra fields to record."""
+        # Extra fields are already handled by the formatter
+        # Just pass them through
+        return msg, kwargs
+
+
+def setup_logging(level: str = "INFO") -> None:
+    """
+    Initialize structured logging configuration.
+
+    Args:
+        level: Log level (DEBUG, INFO, WARNING, ERROR, CRITICAL)
+    """
+    # Convert string level to logging constant
+    numeric_level = getattr(logging, level.upper(), logging.INFO)
+
+    # Create console handler with JSON formatter
+    handler = logging.StreamHandler(sys.stdout)
+    handler.setFormatter(StructuredFormatter())
+
+    # Configure root logger
+    root_logger = logging.getLogger()
+    root_logger.setLevel(numeric_level)
+    root_logger.handlers.clear()  # Remove existing handlers
+    root_logger.addHandler(handler)
+
+    # Reduce noise from third-party libraries
+    logging.getLogger("httpx").setLevel(logging.WARNING)
+    logging.getLogger("httpcore").setLevel(logging.WARNING)
+    logging.getLogger("openai").setLevel(logging.WARNING)
+    logging.getLogger("weaviate").setLevel(logging.WARNING)
+    logging.getLogger("grpc").setLevel(logging.WARNING)
+
+
+def get_logger(name: str) -> logging.LoggerAdapter:
+    """
+    Get a module-specific logger with context support.
+
+    Args:
+        name: Logger name (typically module path like 'nodes.authorization')
+
+    Returns:
+        Logger adapter that supports extra context fields
+    """
+    base_logger = logging.getLogger(f"agentic_rag.{name}")
+    return ContextAdapter(base_logger, {})
diff --git a/agentic-rag-authorization/agentic_rag/node_helpers.py b/agentic-rag-authorization/agentic_rag/node_helpers.py
new file mode 100644
index 0000000..3e8b33f
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/node_helpers.py
@@ -0,0 +1,52 @@
+"""Shared helper functions for nodes."""
+
+import time
+from contextlib import contextmanager
+from typing import Dict, Any
+from langchain_openai import ChatOpenAI
+
+from .config import get_config
+
+
+def get_llm() -> ChatOpenAI:
+    """Get configured LLM instance.
+
+    Returns:
+        ChatOpenAI: Configured LLM with gpt-4 and temperature=0
+    """
+    config = get_config()
+    return ChatOpenAI(
+        model="gpt-4",
+        temperature=0,
+        api_key=config.openai_api_key
+    )
+
+
+@contextmanager
+def log_node_execution(logger, node_name: str, extra: Dict[str, Any]):
+    """Context manager for timing and logging node execution.
+
+    Args:
+        logger: Logger instance to use
+        node_name: Name of the node being executed
+        extra: Extra fields to include in log messages
+
+    Yields:
+        None
+
+    Example:
+        with log_node_execution(logger, "retrieval", {"query": query}):
+            # ... node logic ...
+            pass
+    """
+    start_time = time.time()
+    logger.info(f"Starting {node_name}", extra=extra)
+
+    try:
+        yield
+    finally:
+        duration_ms = (time.time() - start_time) * 1000
+        logger.info(
+            f"{node_name} complete",
+            extra={**extra, "duration_ms": duration_ms}
+        )
diff --git a/agentic-rag-authorization/agentic_rag/nodes/__init__.py b/agentic-rag-authorization/agentic_rag/nodes/__init__.py
new file mode 100644
index 0000000..fc8b411
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/nodes/__init__.py
@@ -0,0 +1,13 @@
+"""Nodes for the agentic RAG state machine."""
+
+from .retrieval_node import retrieval_node
+from .authorization_node import authorization_node
+from .reasoning_node import reasoning_node
+from .generation_node import generation_node
+
+__all__ = [
+    "retrieval_node",
+    "authorization_node",
+    "reasoning_node",
+    "generation_node",
+]
diff --git a/agentic-rag-authorization/agentic_rag/nodes/authorization_node.py b/agentic-rag-authorization/agentic_rag/nodes/authorization_node.py
new file mode 100644
index 0000000..29a33dc
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/nodes/authorization_node.py
@@ -0,0 +1,65 @@
+"""Authorization node - deterministic permission filtering via SpiceDB."""
+
+from langchain_core.messages import SystemMessage
+
+from ..state import AgenticRAGState
+from ..config import get_config
+from ..grpc_helpers import get_spicedb_client
+from ..logging_config import get_logger
+from ..authorization_helpers import batch_check_permissions
+from ..node_helpers import log_node_execution
+
+logger = get_logger("nodes.authorization")
+
+
+def authorization_node(state: AgenticRAGState) -> dict:
+    """
+    Deterministic authorization node - ALWAYS runs, cannot be bypassed.
+
+    This node filters retrieved documents based on SpiceDB permissions.
+    This is a security boundary - the agent cannot bypass this check.
+    """
+    config = get_config()
+
+    with log_node_execution(
+        logger,
+        "authorization",
+        {
+            "subject_id": state["subject_id"],
+            "document_count": len(state["retrieved_documents"]),
+        }
+    ):
+        # Get or create SpiceDB client (reused across requests)
+        client = get_spicedb_client(
+            config.spicedb_endpoint,
+            config.spicedb_token,
+        )
+
+        # Batch check permissions using SpiceDB's bulk API
+        authorized_docs, denied_doc_ids = batch_check_permissions(
+            client,
+            state["subject_id"],
+            state["retrieved_documents"],
+        )
+
+        denied_count = len(denied_doc_ids)
+
+        logger.info(
+            "Authorization results",
+            extra={
+                "authorized": len(authorized_docs),
+                "denied": denied_count,
+                "denied_doc_ids": denied_doc_ids,
+            },
+        )
+
+        return {
+            "authorized_documents": authorized_docs,
+            "denied_count": denied_count,
+            "authorization_passed": len(authorized_docs) > 0,
+            "messages": [
+                SystemMessage(
+                    content=f"Authorization: {len(authorized_docs)}/{len(state['retrieved_documents'])} documents authorized"
+                )
+            ],
+        }
diff --git a/agentic-rag-authorization/agentic_rag/nodes/generation_node.py b/agentic-rag-authorization/agentic_rag/nodes/generation_node.py
new file mode 100644
index 0000000..01e61d6
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/nodes/generation_node.py
@@ -0,0 +1,89 @@
+"""Generation node - generate final answer with authorization context."""
+
+from langchain_core.prompts import ChatPromptTemplate
+from langchain_core.messages import AIMessage
+
+from ..state import AgenticRAGState
+from ..logging_config import get_logger
+from ..node_helpers import get_llm, log_node_execution
+
+logger = get_logger("nodes.generation")
+
+GENERATION_PROMPT = """You are a helpful assistant that answers questions based ONLY on the provided documents.
+
+CRITICAL INSTRUCTIONS:
+1. ONLY use information explicitly stated in the documents below
+2. DO NOT use any external knowledge or information from your training
+3. DO NOT make inferences or extrapolations beyond what's written
+4. If the documents don't contain the answer, say "The provided documents do not contain this information"
+5. Quote or paraphrase directly from the documents when answering
+
+Authorization Context:
+- Query: {query}
+- Authorized documents: {authorized_count}
+- Denied documents: {denied_count}
+
+{documents}
+
+Generate an answer using ONLY the information from the documents above. If documents were denied, mention that some information was not accessible due to permissions."""
+
+
+def generation_node(state: AgenticRAGState) -> dict:
+    """Generate final answer incorporating authorization context.
+
+    This node creates the final response, ensuring transparency
+    about what information was accessible and what was denied.
+    """
+    with log_node_execution(
+        logger,
+        "generation",
+        {
+            "subject_id": state["subject_id"],
+            "authorized_count": len(state["authorized_documents"]),
+            "denied_count": state["denied_count"],
+        }
+    ):
+        llm = get_llm()
+
+        # Format documents with clear boundaries
+        if state["authorized_documents"]:
+            doc_parts = []
+            for i, doc in enumerate(state["authorized_documents"], 1):
+                doc_parts.append(
+                    f"--- Document {i} ---\n"
+                    f"Title: {doc.metadata['title']}\n"
+                    f"Content: {doc.page_content}\n"
+                    f"--- End Document {i} ---"
+                )
+            docs_text = "\n\n".join(doc_parts)
+        else:
+            docs_text = "No authorized documents available."
+
+        prompt = ChatPromptTemplate.from_messages(
+            [
+                ("system", GENERATION_PROMPT),
+            ]
+        )
+
+        chain = prompt | llm
+
+        result = chain.invoke(
+            {
+                "query": state["query"],
+                "authorized_count": len(state["authorized_documents"]),
+                "denied_count": state["denied_count"],
+                "documents": docs_text,
+            }
+        )
+
+        logger.info(
+            "Generated answer",
+            extra={
+                "answer_length": len(result.content),
+            },
+        )
+
+        return {
+            "answer": result.content,
+            "messages": [AIMessage(content=f"Answer: {result.content}")],
+        }
diff --git a/agentic-rag-authorization/agentic_rag/nodes/reasoning_node.py b/agentic-rag-authorization/agentic_rag/nodes/reasoning_node.py
new file mode 100644
index 0000000..6a6550b
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/nodes/reasoning_node.py
@@ -0,0 +1,86 @@
+"""Reasoning node - agent reasons about authorization failures."""
+
+from langchain_core.prompts import ChatPromptTemplate
+from langchain_core.messages import AIMessage
+
+from ..state import AgenticRAGState
+from ..logging_config import get_logger
+from ..node_helpers import get_llm, log_node_execution
+
+logger = get_logger("nodes.reasoning")
+
+REASONING_PROMPT = """You are an intelligent reasoning agent. The user's query could not be fully answered because some documents were denied due to permissions.
+
+Current situation:
+- Query: {query}
+- User: {subject_id}
+- Retrieved documents: {retrieved_count}
+- Authorized documents: {authorized_count}
+- Denied: {denied_count}
+- Attempt: {attempt}/{max_attempts}
+
+Previous reasoning: {reasoning}
+
+Options:
+1. If there are authorized documents, proceed with generating an answer from them
+2. If no authorized documents and attempts remain, try a different search strategy
+3. If no authorized documents and no attempts remain, explain why access was denied
+
+What should we do next? Be specific and actionable."""
+
+
+def reasoning_node(state: AgenticRAGState) -> dict:
+    """Agent reasons about authorization results and decides next steps.
+
+    This node allows the agent to adapt when authorization fails:
+    - Try different search strategies
+    - Explain authorization constraints
+    - Make informed decisions about how to proceed
+    """
+    with log_node_execution(
+        logger,
+        "reasoning",
+        {
+            "subject_id": state["subject_id"],
+            "authorized_count": len(state["authorized_documents"]),
+            "denied_count": state["denied_count"],
+            "attempt": state["retrieval_attempt"],
+        }
+    ):
+        llm = get_llm()
+
+        prompt = ChatPromptTemplate.from_messages(
+            [
+                ("system", REASONING_PROMPT),
+            ]
+        )
+
+        chain = prompt | llm
+
+        result = chain.invoke(
+            {
+                "query": state["query"],
+                "subject_id": state["subject_id"],
+                "retrieved_count": len(state["retrieved_documents"]),
+                "authorized_count": len(state["authorized_documents"]),
+                "denied_count": state["denied_count"],
+                "attempt": state["retrieval_attempt"],
+                "max_attempts": state["max_attempts"],
+                "reasoning": "\n".join(state.get("reasoning", [])),
+            }
+        )
+
+        reasoning = state.get("reasoning", [])
+        reasoning.append(result.content)
+
+        logger.info(
+            "Reasoning decision",
+            extra={
+                "decision_length": len(result.content),
+            },
+        )
+
+        return {
+            "reasoning": reasoning,
+            "messages": [AIMessage(content=f"Reasoning: {result.content}")],
+        }
diff --git a/agentic-rag-authorization/agentic_rag/nodes/retrieval_node.py b/agentic-rag-authorization/agentic_rag/nodes/retrieval_node.py
new file mode 100644
index 0000000..6c83f42
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/nodes/retrieval_node.py
@@ -0,0 +1,98 @@
+"""Retrieval node - retrieve documents from Weaviate."""
+
+from langchain_core.messages import SystemMessage
+from langchain_core.documents import Document
+
+from ..state import AgenticRAGState
+from ..config import get_config
+from ..logging_config import get_logger
+from ..weaviate_client import get_weaviate_client
+from ..node_helpers import log_node_execution
+
+logger = get_logger("nodes.retrieval")
+
+
+def retrieval_node(state: AgenticRAGState) -> dict:
+    """Retrieve documents from Weaviate based on query.
+
+    This node performs keyword search in Weaviate to find
+    relevant documents. Authorization happens in the next node.
+    """
+    config = get_config()
+
+    with log_node_execution(
+        logger,
+        "retrieval",
+        {
+            "query": state["query"],
+            "subject_id": state["subject_id"],
+        }
+    ):
+        try:
+            # Get or create Weaviate client (reused across requests)
+            weaviate_client = get_weaviate_client(config.weaviate_url)
+
+            # Perform BM25 keyword search using v3 API
+            response = (
+                weaviate_client.query.get("Documents", ["doc_id", "title", "content", "department", "classification"])
+                .with_bm25(query=state["query"])
+                .with_limit(5)
+                .do()
+            )
+
+            # Extract results
+            results = response.get("data", {}).get("Get", {}).get("Documents", [])
+
+            # Convert to LangChain Documents
+            documents = [
+                Document(
+                    page_content=result["content"],
+                    metadata={
+                        "doc_id": result["doc_id"],
+                        "title": result["title"],
+                        "department": result["department"],
+                        "classification": result["classification"],
+                    },
+                )
+                for result in results
+            ]
+
+            logger.info(
+                "Retrieved documents",
+                extra={
+                    "document_count": len(documents),
+                    "doc_ids": [doc.metadata.get("doc_id") for doc in documents],
+                },
+            )
+
+            return {
+                "retrieved_documents": documents,
+                "retrieval_attempt": state["retrieval_attempt"] + 1,
+                "messages": [
+                    SystemMessage(
+                        content=f"Retrieved {len(documents)} documents from Weaviate"
+                    )
+                ],
+            }
+
+        except Exception as e:
+            logger.error(
+                "Retrieval failed",
+                extra={
+                    "query": state["query"],
+                    "error": str(e),
+                    "error_type": type(e).__name__,
+                },
+                exc_info=True,
+            )
+
+            # Fail gracefully - return empty results
+            return {
+                "retrieved_documents": [],
+                "retrieval_attempt": state["retrieval_attempt"] + 1,
+                "messages": [
+                    SystemMessage(
+                        content=f"Retrieval failed: {str(e)}. Unable to retrieve documents."
+                    )
+                ],
+            }
diff --git a/agentic-rag-authorization/agentic_rag/state.py b/agentic-rag-authorization/agentic_rag/state.py
new file mode 100644
index 0000000..b860195
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/state.py
@@ -0,0 +1,40 @@
+"""State schema for agentic RAG with authorization."""
+
+from typing import TypedDict, Annotated, List
+from langchain_core.documents import Document
+from langchain_core.messages import BaseMessage
+import operator
+
+
+class AgenticRAGState(TypedDict):
+    """State for agentic RAG with authorization.
+
+    This state flows through the LangGraph state machine, tracking:
+    - User query and subject identity
+    - Agent reasoning and messages
+    - Retrieved and authorized documents
+    - Authorization results and decisions
+    """
+
+    # Input
+    query: str
+    subject_id: str
+
+    # Configuration
+    max_attempts: int
+
+    # Agent messages (accumulated)
+    messages: Annotated[List[BaseMessage], operator.add]
+
+    # Retrieval
+    retrieval_attempt: int
+    retrieved_documents: List[Document]
+
+    # Authorization (deterministic)
+    authorized_documents: List[Document]
+    denied_count: int
+    authorization_passed: bool
+
+    # Final output
+    answer: str
+    reasoning: List[str]
diff --git a/agentic-rag-authorization/agentic_rag/validation.py b/agentic-rag-authorization/agentic_rag/validation.py
new file mode 100644
index 0000000..08b71cf
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/validation.py
@@ -0,0 +1,67 @@
+"""Input validation for security and stability."""
+
+
+class ValidationError(Exception):
+    """Raised when input validation fails."""
+
+    pass
+
+
+def validate_query(query: str, max_length: int = 1000) -> str:
+    """
+    Validate and sanitize user query.
+
+    Args:
+        query: User query string
+        max_length: Maximum allowed query length (default 1000)
+
+    Returns:
+        Sanitized query string
+
+    Raises:
+        ValidationError: If query is invalid
+    """
+    if not query or not query.strip():
+        raise ValidationError("Query cannot be empty")
+
+    query = query.strip()
+
+    if len(query) > max_length:
+        # Truncate to max length
+        query = query[:max_length]
+
+    return query
+
+
+def validate_subject_id(subject_id: str, max_length: int = 100) -> str:
+    """
+    Validate subject ID (alphanumeric + underscore/hyphen only).
+
+    This prevents injection attacks and ensures subject IDs are safe
+    to use in authorization checks.
+
+    Args:
+        subject_id: User/subject identifier
+        max_length: Maximum allowed length (default 100)
+
+    Returns:
+        Sanitized subject ID
+
+    Raises:
+        ValidationError: If subject ID is invalid
+    """
+    if not subject_id or not subject_id.strip():
+        raise ValidationError("Subject ID cannot be empty")
+
+    subject_id = subject_id.strip()
+
+    if len(subject_id) > max_length:
+        raise ValidationError(f"Subject ID too long (max {max_length} characters)")
+
+    # Only allow alphanumeric, underscore, and hyphen
+    if not all(c.isalnum() or c in ["_", "-"] for c in subject_id):
+        raise ValidationError(
+            "Subject ID contains invalid characters (only alphanumeric, underscore, and hyphen allowed)"
+        )
+
+    return subject_id
diff --git a/agentic-rag-authorization/agentic_rag/weaviate_client.py b/agentic-rag-authorization/agentic_rag/weaviate_client.py
new file mode 100644
index 0000000..0c11fda
--- /dev/null
+++ b/agentic-rag-authorization/agentic_rag/weaviate_client.py
@@ -0,0 +1,48 @@
+"""Weaviate client connection pooling."""
+
+import weaviate
+from threading import Lock
+from typing import Optional
+
+# Global singleton for Weaviate client with thread-safe initialization
+_weaviate_client: Optional[weaviate.Client] = None
+_weaviate_lock = Lock()
+
+
+def get_weaviate_client(url: str) -> weaviate.Client:
+    """
+    Get or create reusable Weaviate client (singleton, thread-safe).
+
+    This function provides connection pooling for Weaviate by maintaining
+    a single client instance across requests, eliminating connection overhead.
+
+    Args:
+        url: The Weaviate URL (e.g., "http://localhost:8080")
+
+    Returns:
+        weaviate.Client configured for the given URL
+    """
+    global _weaviate_client
+
+    # Fast path: client already exists
+    if _weaviate_client is not None:
+        return _weaviate_client
+
+    # Slow path: create new client with thread-safe lock
+    with _weaviate_lock:
+        # Double-check after acquiring lock
+        if _weaviate_client is None:
+            _weaviate_client = weaviate.Client(url)
+
+    return _weaviate_client
+
+
+def reset_weaviate_client():
+    """
+    Reset singleton (useful for testing).
+
+    This allows tests to clear the cached client and create a fresh one.
+    """
+    global _weaviate_client
+    with _weaviate_lock:
+        _weaviate_client = None
diff --git a/agentic-rag-authorization/api/__init__.py b/agentic-rag-authorization/api/__init__.py
new file mode 100644
index 0000000..4896324
--- /dev/null
+++ b/agentic-rag-authorization/api/__init__.py
@@ -0,0 +1 @@
+"""Agentic RAG Web API."""
diff --git a/agentic-rag-authorization/api/config.py b/agentic-rag-authorization/api/config.py
new file mode 100644
index 0000000..6a95841
--- /dev/null
+++ b/agentic-rag-authorization/api/config.py
@@ -0,0 +1,19 @@
+"""API configuration."""
+
+from typing import List
+from pydantic import BaseModel
+
+
+class APIConfig(BaseModel):
+    """API configuration settings."""
+
+    cors_origins: List[str] = [
+        "http://localhost:8000",
+        "http://127.0.0.1:8000",
+    ]
+    api_prefix: str = "/api"
+
+
+def get_api_config() -> APIConfig:
+    """Get API configuration."""
+    return APIConfig()
diff --git a/agentic-rag-authorization/api/main.py b/agentic-rag-authorization/api/main.py
new file mode 100644
index 0000000..ad88046
--- /dev/null
+++ b/agentic-rag-authorization/api/main.py
@@ -0,0 +1,56 @@
+"""FastAPI application entry point."""
+
+from fastapi import FastAPI
+from fastapi.middleware.cors import CORSMiddleware
+from fastapi.staticfiles import StaticFiles
+from fastapi.responses import FileResponse
+import os
+
+from .routes import router
+from .config import get_api_config
+
+# Create FastAPI app
+app = FastAPI(
+    title="Agentic RAG Authorization API",
+    version="1.0.0",
+    description="API for demonstrating fine-grained authorization in RAG systems",
+)
+
+# Get configuration
+config = get_api_config()
+
+# Add CORS middleware
+app.add_middleware(
+    CORSMiddleware,
+    allow_origins=config.cors_origins,
+    allow_credentials=True,
+    allow_methods=["*"],
+    allow_headers=["*"],
+)
+
+# Include API routes
+app.include_router(router, prefix=config.api_prefix)
+
+# Serve frontend static files
+ui_path = os.path.join(os.path.dirname(os.path.dirname(__file__)), "ui")
+if os.path.exists(ui_path):
+    # Serve index.html at root
+    @app.get("/")
+    async def read_root():
+        """Serve the frontend UI."""
+        index_path = os.path.join(ui_path, "index.html")
+        if os.path.exists(index_path):
+            return FileResponse(index_path)
+        return {"message": "Frontend UI not found. Please create ui/index.html"}
+
+    # Mount static files for any other assets
+    app.mount("/static", StaticFiles(directory=ui_path), name="static")
+else:
+    @app.get("/")
+    async def read_root():
+        """Root endpoint when UI not available."""
+        return {
+            "message": "Agentic RAG API",
+            "docs": "/docs",
+            "api": "/api",
+        }
diff --git a/agentic-rag-authorization/api/models.py b/agentic-rag-authorization/api/models.py
new file mode 100644
index 0000000..bb07511
--- /dev/null
+++ b/agentic-rag-authorization/api/models.py
@@ -0,0 +1,79 @@
+"""Pydantic models for API requests and responses."""
+
+from typing import List, Optional
+from pydantic import BaseModel, Field
+
+
+class QueryRequest(BaseModel):
+    """Request model for RAG query."""
+
+    query: str = Field(..., min_length=1, max_length=1000)
+    subject_id: str
+    max_attempts: int = Field(default=1, ge=1, le=5)
+
+
+class DocumentSummary(BaseModel):
+    """Summary of an authorized document."""
+
+    doc_id: str
+    title: str
+    content_preview: str
+
+
+class DeniedDocumentSummary(BaseModel):
+    """Summary of a denied document."""
+
+    doc_id: str
+    title: str
+    reason: str
+
+
+class QueryStats(BaseModel):
+    """Statistics about query execution."""
+
+    retrieved_count: int
+    authorized_count: int
+    denied_count: int
+    retrieval_attempts: int
+    execution_time_ms: int
+
+
+class QueryResponseData(BaseModel):
+    """Data returned from a successful query."""
+
+    query: str
+    subject_id: str
+    answer: str
+    authorized_documents: List[DocumentSummary]
+    denied_documents: List[DeniedDocumentSummary]
+    stats: QueryStats
+
+
+class APIResponse(BaseModel):
+    """Standard API response wrapper."""
+
+    success: bool
+    data: Optional[QueryResponseData] = None
+    error: Optional[dict] = None
+
+
+class User(BaseModel):
+    """User information."""
+
+    id: str
+    name: str
+    department: str
+
+
+class UsersResponse(BaseModel):
+    """Response containing list of users."""
+
+    success: bool
+    data: dict
+
+
+class HealthResponse(BaseModel):
+    """Health check response."""
+
+    status: str
+    services: dict
diff --git a/agentic-rag-authorization/api/routes.py b/agentic-rag-authorization/api/routes.py
new file mode 100644
index 0000000..707c3cb
--- /dev/null
+++ b/agentic-rag-authorization/api/routes.py
@@ -0,0 +1,117 @@
+"""API route handlers."""
+
+import time
+from typing import List
+from fastapi import APIRouter, HTTPException
+
+from .models import (
+    QueryRequest,
+    APIResponse,
+    DocumentSummary,
+    DeniedDocumentSummary,
+    QueryStats,
+    QueryResponseData,
+    User,
+)
+
+# Import the existing RAG system
+from agentic_rag.graph import run_agentic_rag_async
+
+router = APIRouter()
+
+# Available users for the demo
+USERS: List[User] = [
+    User(id="alice", name="Alice", department="Engineering"),
+    User(id="bob", name="Bob", department="Sales"),
+    User(id="hr_manager", name="HR Manager", department="HR"),
+    User(id="finance_manager", name="Finance Manager", department="Finance"),
+]
+
+
+@router.get("/users")
+async def get_users():
+    """Get list of available users."""
+    return {"success": True, "data": {"users": [user.dict() for user in USERS]}}
+
+
+@router.get("/health")
+async def health_check():
+    """Check health of backend services."""
+    # TODO: Actually check Weaviate + SpiceDB connectivity
+    # For now, return optimistic health status
+    return {
+        "status": "healthy",
+        "services": {
+            "weaviate": "connected",
+            "spicedb": "connected",
+            "openai": "configured",
+        },
+    }
+
+
+@router.post("/query")
+async def execute_query(request: QueryRequest) -> APIResponse:
+    """Execute a RAG query with authorization."""
+    try:
+        start_time = time.time()
+
+        # Call the existing RAG system
+        result = await run_agentic_rag_async(
+            query=request.query,
+            subject_id=request.subject_id,
+            max_attempts=request.max_attempts,
+        )
+
+        execution_time_ms = int((time.time() - start_time) * 1000)
+
+        # Format authorized documents
+        authorized_docs = [
+            DocumentSummary(
+                doc_id=doc.metadata["doc_id"],
+                title=doc.metadata["title"],
+                content_preview=(
+                    doc.page_content[:200] + "..."
+                    if len(doc.page_content) > 200
+                    else doc.page_content
+                ),
+            )
+            for doc in result["authorized_documents"]
+        ]
+
+        # Format denied documents (retrieved but not authorized)
+        denied_docs = []
+        authorized_doc_ids = {doc.doc_id for doc in authorized_docs}
+
+        for doc in result["retrieved_documents"]:
+            doc_id = doc.metadata["doc_id"]
+            if doc_id not in authorized_doc_ids:
+                denied_docs.append(
+                    DeniedDocumentSummary(
+                        doc_id=doc_id,
+                        title=doc.metadata["title"],
+                        reason=f"User '{request.subject_id}' does not have permission to access this document",
+                    )
+                )
+
+        # Build response
+        response_data = QueryResponseData(
+            query=result["query"],
+            subject_id=result["subject_id"],
+            answer=result["answer"],
+            authorized_documents=authorized_docs,
+            denied_documents=denied_docs,
+            stats=QueryStats(
+                retrieved_count=len(result["retrieved_documents"]),
+                authorized_count=len(result["authorized_documents"]),
+                denied_count=result["denied_count"],
+                retrieval_attempts=result["retrieval_attempt"],
+                execution_time_ms=execution_time_ms,
+            ),
+        )
+
+        return APIResponse(success=True, data=response_data)
+
+    except Exception as e:
+        return APIResponse(
+            success=False, error={"code": "EXECUTION_ERROR", "message": str(e)}
+        )
diff --git a/agentic-rag-authorization/data/PERMISSIONS.md b/agentic-rag-authorization/data/PERMISSIONS.md
new file mode 100644
index 0000000..ff49a8e
--- /dev/null
+++ b/agentic-rag-authorization/data/PERMISSIONS.md
@@ -0,0 +1,101 @@
+# Permission Matrix
+
+This document describes the permission patterns used in the agentic RAG demo.
+
+## Users and Departments
+
+| User | Department | Department Access |
+|------|-----------|------------------|
+| alice | engineering | All 15 engineering documents |
+| bob | sales | All 10 sales documents |
+| hr_manager | hr | All 10 HR documents |
+| finance_manager | finance | All 10 finance documents |
+
+## Permission Patterns
+
+### 1. Department-Based Access (Primary Pattern)
+
+All department members can view documents in their department:
+
+- **Engineering** (15 docs): alice can access all
+  - architecture: 5 docs
+  - guide: 5 docs
+  - memo: 3 docs
+  - spec: 2 docs
+
+- **Sales** (10 docs): bob can access all
+  - proposal: 4 docs
+  - guide: 3 docs
+  - playbook: 2 docs
+  - report: 1 doc
+
+- **HR** (10 docs): hr_manager can access all
+  - policy: 4 docs
+  - guide: 3 docs
+  - handbook: 2 docs
+  - memo: 1 doc
+
+- **Finance** (10 docs): finance_manager can access all
+  - report: 4 docs
+  - policy: 3 docs
+  - analysis: 2 docs
+  - memo: 1 doc
+
+### 2. Cross-Department Documents
+
+Some documents are accessible to multiple departments for collaboration:
+
+| Document ID | Primary Department | Also Accessible To | Reason |
+|------------|-------------------|-------------------|---------|
+| engineering-architecture-001 | engineering | sales | Technical sales teams need architecture knowledge |
+| sales-guide-005 | sales | engineering | Engineering needs product positioning info |
+| hr-policy-001 | hr | finance | Finance needs HR policies for budget planning |
+
+### 3. Individual User Exceptions
+
+Specific users get special access outside their department:
+
+| User | Additional Access | Reason |
+|------|------------------|--------|
+| alice (engineering) | sales-proposal-001 | Technical input needed for sales proposal |
+| finance_manager | hr-policy-002 | Compensation policy access for budget planning |
+| bob (sales) | engineering-guide-006 | Technical documentation for sales enablement |
+
+### 4. Public Documents
+
+All users can access public documents:
+
+- public-handbook-001
+- public-handbook-002
+- public-handbook-003
+- public-policy-004
+- public-policy-005
+
+All 4 users (alice, bob, hr_manager, finance_manager) have viewer permission.
+
+## Testing Permissions
+
+Use the verification script to test permissions:
+
+```bash
+python3 scripts/verify_permissions.py
+```
+
+This will verify:
+- Department-based access works correctly
+- Cross-department documents are accessible
+- Individual exceptions are granted
+- Public documents are universally accessible
+- Access denials work as expected
+
+## Document Distribution
+
+Total: 50 documents across 5 departments
+
+| Department | Count | Categories |
+|-----------|-------|-----------|
+| Engineering | 15 | architecture (5), guide (5), memo (3), spec (2) |
+| Sales | 10 | proposal (4), guide (3), playbook (2), report (1) |
+| HR | 10 | policy (4), guide (3), handbook (2), memo (1) |
+| Finance | 10 | report (4), policy (3), analysis (2), memo (1) |
+| Public | 5 | handbook (3), policy (2) |
diff --git a/agentic-rag-authorization/data/documents/engineering-architecture-001.txt b/agentic-rag-authorization/data/documents/engineering-architecture-001.txt
new file mode 100644
index 0000000..2de8d2c
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-architecture-001.txt
@@ -0,0 +1,39 @@
+Title: Authentication Service Architecture
+Department: engineering
+Classification: confidential
+Type: Technical Architecture
+
+Summary:
+This document describes the Notification System architecture for our microservices architecture.
+
+Architecture Overview:
+The system is designed for high availability and fault tolerance with redundancy at multiple levels.
+
+Microservices Patterns Used:
+- Backend for Frontend (BFF): Specialized backends for web and mobile clients
+- Strangler Fig: Gradual migration from monolith to microservices
+- Anti-Corruption Layer: Protects new services from legacy system complexity
+- Bulkhead Pattern: Isolates resources to prevent total system failure
+
+Key Components:
+- Service Layer: RESTful APIs with OpenAPI specification
+- Data Layer: Event-driven data synchronization
+- API Layer: GraphQL and REST endpoints
+- Integration Layer: Message broker using RabbitMQ
+
+Technical Specifications:
+Language: Python 3.11, Java 17
+Framework: FastAPI, Spring Boot
+Database: PostgreSQL, MongoDB
+Cache: Redis with clustering
+Message Queue: RabbitMQ
+Service Mesh: Istio
+
+Implementation Guidelines:
+- Follow 12-factor app methodology
+- Implement comprehensive observability (metrics, logs, traces)
+- Use semantic versioning for APIs
+- Enforce contract testing between services
+- Apply defense in depth for security
+
+Related Documents: eng-guide-001, eng-spec-001
diff --git a/agentic-rag-authorization/data/documents/engineering-architecture-002.txt b/agentic-rag-authorization/data/documents/engineering-architecture-002.txt
new file mode 100644
index 0000000..9944326
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-architecture-002.txt
@@ -0,0 +1,39 @@
+Title: Cache Layer Architecture
+Department: engineering
+Classification: internal
+Type: Technical Architecture
+
+Summary:
+This document describes the Message Queue architecture for our infrastructure.
+
+Architecture Overview:
+This architecture emphasizes scalability, reliability, and maintainability through modular design.
+
+Microservices Patterns Used:
+- API Gateway Pattern: Centralized entry point for all client requests
+- Service Discovery: Dynamic service registration and lookup using Consul
+- Circuit Breaker: Prevents cascade failures using Hystrix pattern
+- Database per Service: Each microservice owns its data store
+
+Key Components:
+- Service Layer: RESTful APIs with OpenAPI specification
+- Data Layer: Event-driven data synchronization
+- API Layer: GraphQL and REST endpoints
+- Integration Layer: Message broker using RabbitMQ
+
+Technical Specifications:
+Language: Python 3.11, Java 17
+Framework: FastAPI, Spring Boot
+Database: PostgreSQL, MongoDB
+Cache: Redis with clustering
+Message Queue: RabbitMQ
+Service Mesh: Istio
+
+Implementation Guidelines:
+- Follow 12-factor app methodology
+- Implement comprehensive observability (metrics, logs, traces)
+- Use semantic versioning for APIs
+- Enforce contract testing between services
+- Apply defense in depth for security
+
+Related Documents: eng-guide-001, eng-spec-001
diff --git a/agentic-rag-authorization/data/documents/engineering-architecture-003.txt b/agentic-rag-authorization/data/documents/engineering-architecture-003.txt
new file mode 100644
index 0000000..7cb8490
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-architecture-003.txt
@@ -0,0 +1,39 @@
+Title: Cache Layer Architecture
+Department: engineering
+Classification: confidential
+Type: Technical Architecture
+
+Summary:
+This document describes the Search Engine architecture for our infrastructure.
+
+Architecture Overview:
+Our system follows a microservices architecture with clear service boundaries and well-defined interfaces.
+
+Microservices Patterns Used:
+- API Gateway Pattern: Centralized entry point for all client requests
+- Service Discovery: Dynamic service registration and lookup using Consul
+- Circuit Breaker: Prevents cascade failures using Hystrix pattern
+- Database per Service: Each microservice owns its data store
+
+Key Components:
+- Service Layer: RESTful APIs with OpenAPI specification
+- Data Layer: Event-driven data synchronization
+- API Layer: GraphQL and REST endpoints
+- Integration Layer: Message broker using RabbitMQ
+
+Technical Specifications:
+Language: Python 3.11, Java 17
+Framework: FastAPI, Spring Boot
+Database: PostgreSQL, MongoDB
+Cache: Redis with clustering
+Message Queue: RabbitMQ
+Service Mesh: Istio
+
+Implementation Guidelines:
+- Follow 12-factor app methodology
+- Implement comprehensive observability (metrics, logs, traces)
+- Use semantic versioning for APIs
+- Enforce contract testing between services
+- Apply defense in depth for security
+
+Related Documents: eng-guide-001, eng-spec-001
diff --git a/agentic-rag-authorization/data/documents/engineering-architecture-004.txt b/agentic-rag-authorization/data/documents/engineering-architecture-004.txt
new file mode 100644
index 0000000..5d148e6
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-architecture-004.txt
@@ -0,0 +1,39 @@
+Title: API Gateway Architecture
+Department: engineering
+Classification: internal
+Type: Technical Architecture
+
+Summary:
+This document describes the Payment Gateway architecture for our data processing system.
+
+Architecture Overview:
+The system is designed for high availability and fault tolerance with redundancy at multiple levels.
+
+Microservices Patterns Used:
+- Backend for Frontend (BFF): Specialized backends for web and mobile clients
+- Strangler Fig: Gradual migration from monolith to microservices
+- Anti-Corruption Layer: Protects new services from legacy system complexity
+- Bulkhead Pattern: Isolates resources to prevent total system failure
+
+Key Components:
+- Service Layer: RESTful APIs with OpenAPI specification
+- Data Layer: Event-driven data synchronization
+- API Layer: GraphQL and REST endpoints
+- Integration Layer: Message broker using RabbitMQ
+
+Technical Specifications:
+Language: Python 3.11, Java 17
+Framework: FastAPI, Spring Boot
+Database: PostgreSQL, MongoDB
+Cache: Redis with clustering
+Message Queue: RabbitMQ
+Service Mesh: Istio
+
+Implementation Guidelines:
+- Follow 12-factor app methodology
+- Implement comprehensive observability (metrics, logs, traces)
+- Use semantic versioning for APIs
+- Enforce contract testing between services
+- Apply defense in depth for security
+
+Related Documents: eng-guide-001, eng-spec-001
diff --git a/agentic-rag-authorization/data/documents/engineering-architecture-005.txt b/agentic-rag-authorization/data/documents/engineering-architecture-005.txt
new file mode 100644
index 0000000..b8ef086
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-architecture-005.txt
@@ -0,0 +1,39 @@
+Title: Message Queue Architecture
+Department: engineering
+Classification: confidential
+Type: Technical Architecture
+
+Summary:
+This document describes the Data Pipeline architecture for our microservices architecture.
+
+Architecture Overview:
+This architecture emphasizes scalability, reliability, and maintainability through modular design.
+
+Microservices Patterns Used:
+- API Gateway Pattern: Centralized entry point for all client requests
+- Service Discovery: Dynamic service registration and lookup using Consul
+- Circuit Breaker: Prevents cascade failures using Hystrix pattern
+- Database per Service: Each microservice owns its data store
+
+Key Components:
+- Service Layer: RESTful APIs with OpenAPI specification
+- Data Layer: Event-driven data synchronization
+- API Layer: GraphQL and REST endpoints
+- Integration Layer: Message broker using RabbitMQ
+
+Technical Specifications:
+Language: Python 3.11, Java 17
+Framework: FastAPI, Spring Boot
+Database: PostgreSQL, MongoDB
+Cache: Redis with clustering
+Message Queue: RabbitMQ
+Service Mesh: Istio
+
+Implementation Guidelines:
+- Follow 12-factor app methodology
+- Implement comprehensive observability (metrics, logs, traces)
+- Use semantic versioning for APIs
+- Enforce contract testing between services
+- Apply defense in depth for security
+
+Related Documents: eng-guide-001, eng-spec-001
diff --git a/agentic-rag-authorization/data/documents/engineering-guide-006.txt b/agentic-rag-authorization/data/documents/engineering-guide-006.txt
new file mode 100644
index 0000000..8c902b2
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-guide-006.txt
@@ -0,0 +1,27 @@
+Title: Code Review Process Guide
+Department: engineering
+Classification: internal
+Type: Development Guide
+
+Introduction:
+This guide covers Code Review Process for engineering teams.
+
+Best Practices:
+- Write clear, documented code
+- Use version control effectively
+- Implement comprehensive tests
+
+Common Patterns:
+- Repository pattern
+- Factory pattern
+- Observer pattern
+
+Examples:
+See code samples in the engineering repository
+
+Troubleshooting:
+Check logs in /var/log/application
+Verify configuration settings
+Review recent deployments
+
+Related Documents: eng-architecture-001
diff --git a/agentic-rag-authorization/data/documents/engineering-guide-007.txt b/agentic-rag-authorization/data/documents/engineering-guide-007.txt
new file mode 100644
index 0000000..25f57dc
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-guide-007.txt
@@ -0,0 +1,27 @@
+Title: Security Best Practices Guide
+Department: engineering
+Classification: internal
+Type: Development Guide
+
+Introduction:
+This guide covers Security Best Practices for engineering teams.
+
+Best Practices:
+- Write clear, documented code
+- Use version control effectively
+- Implement comprehensive tests
+
+Common Patterns:
+- Repository pattern
+- Factory pattern
+- Observer pattern
+
+Examples:
+See code samples in the engineering repository
+
+Troubleshooting:
+Check logs in /var/log/application
+Verify configuration settings
+Review recent deployments
+
+Related Documents: eng-architecture-001
diff --git a/agentic-rag-authorization/data/documents/engineering-guide-008.txt b/agentic-rag-authorization/data/documents/engineering-guide-008.txt
new file mode 100644
index 0000000..0cfecc4
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-guide-008.txt
@@ -0,0 +1,27 @@
+Title: Monitoring and Alerting Guide
+Department: engineering
+Classification: internal
+Type: Development Guide
+
+Introduction:
+This guide covers Monitoring and Alerting for engineering teams.
+
+Best Practices:
+- Write clear, documented code
+- Use version control effectively
+- Implement comprehensive tests
+
+Common Patterns:
+- Repository pattern
+- Factory pattern
+- Observer pattern
+
+Examples:
+See code samples in the engineering repository
+
+Troubleshooting:
+Check logs in /var/log/application
+Verify configuration settings
+Review recent deployments
+
+Related Documents: eng-architecture-001
diff --git a/agentic-rag-authorization/data/documents/engineering-guide-009.txt b/agentic-rag-authorization/data/documents/engineering-guide-009.txt
new file mode 100644
index 0000000..e647677
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-guide-009.txt
@@ -0,0 +1,27 @@
+Title: API Design Guidelines Guide
+Department: engineering
+Classification: internal
+Type: Development Guide
+
+Introduction:
+This guide covers API Design Guidelines for engineering teams.
+
+Best Practices:
+- Write clear, documented code
+- Use version control effectively
+- Implement comprehensive tests
+
+Common Patterns:
+- Repository pattern
+- Factory pattern
+- Observer pattern
+
+Examples:
+See code samples in the engineering repository
+
+Troubleshooting:
+Check logs in /var/log/application
+Verify configuration settings
+Review recent deployments
+
+Related Documents: eng-architecture-001
diff --git a/agentic-rag-authorization/data/documents/engineering-guide-010.txt b/agentic-rag-authorization/data/documents/engineering-guide-010.txt
new file mode 100644
index 0000000..8da697b
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-guide-010.txt
@@ -0,0 +1,27 @@
+Title: Testing Strategies Guide
+Department: engineering
+Classification: internal
+Type: Development Guide
+
+Introduction:
+This guide covers Testing Strategies for engineering teams.
+
+Best Practices:
+- Write clear, documented code
+- Use version control effectively
+- Implement comprehensive tests
+
+Common Patterns:
+- Repository pattern
+- Factory pattern
+- Observer pattern
+
+Examples:
+See code samples in the engineering repository
+
+Troubleshooting:
+Check logs in /var/log/application
+Verify configuration settings
+Review recent deployments
+
+Related Documents: eng-architecture-001
diff --git a/agentic-rag-authorization/data/documents/engineering-memo-011.txt b/agentic-rag-authorization/data/documents/engineering-memo-011.txt
new file mode 100644
index 0000000..ef69dc5
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-memo-011.txt
@@ -0,0 +1,24 @@
+Title: Engineering Update - 011
+Department: engineering
+Classification: internal
+Type: Engineering Memo
+
+Date: 2024-01-15
+From: Engineering Leadership
+
+Subject: Important technical updates and decisions
+
+Context:
+Recent architecture review and technical planning sessions
+
+Key Points:
+- New API standards adopted
+- Migration to microservices
+- Performance improvements prioritized
+
+Action Items:
+- Review new standards
+- Plan service decomposition
+- Benchmark current performance
+
+Timeline: Q2 2024
diff --git a/agentic-rag-authorization/data/documents/engineering-memo-012.txt b/agentic-rag-authorization/data/documents/engineering-memo-012.txt
new file mode 100644
index 0000000..52d9b52
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-memo-012.txt
@@ -0,0 +1,24 @@
+Title: Engineering Update - 012
+Department: engineering
+Classification: internal
+Type: Engineering Memo
+
+Date: 2024-04-05
+From: Engineering Leadership
+
+Subject: Important technical updates and decisions
+
+Context:
+Recent architecture review and technical planning sessions
+
+Key Points:
+- New API standards adopted
+- Migration to microservices
+- Performance improvements prioritized
+
+Action Items:
+- Review new standards
+- Plan service decomposition
+- Benchmark current performance
+
+Timeline: Q2 2024
diff --git a/agentic-rag-authorization/data/documents/engineering-memo-013.txt b/agentic-rag-authorization/data/documents/engineering-memo-013.txt
new file mode 100644
index 0000000..1bd4291
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-memo-013.txt
@@ -0,0 +1,24 @@
+Title: Engineering Update - 013
+Department: engineering
+Classification: internal
+Type: Engineering Memo
+
+Date: 2024-01-15
+From: Engineering Leadership
+
+Subject: Important technical updates and decisions
+
+Context:
+Recent architecture review and technical planning sessions
+
+Key Points:
+- New API standards adopted
+- Migration to microservices
+- Performance improvements prioritized
+
+Action Items:
+- Review new standards
+- Plan service decomposition
+- Benchmark current performance
+
+Timeline: Q2 2024
diff --git a/agentic-rag-authorization/data/documents/engineering-spec-014.txt b/agentic-rag-authorization/data/documents/engineering-spec-014.txt
new file mode 100644
index 0000000..e48a7a1
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-spec-014.txt
@@ -0,0 +1,26 @@
+Title: Search Engine Specification
+Department: engineering
+Classification: internal
+Type: Technical Specification
+
+Version: 1.0
+Status: Draft
+
+Overview:
+Technical specification for new service component
+
+Requirements:
+- High availability
+- Low latency
+- Scalability
+- Security
+
+Design:
+RESTful API design with JSON payloads
+Stateless service architecture
+
+Implementation Notes:
+Use existing frameworks and libraries
+Follow team coding standards
+
+Testing Strategy: Unit tests, integration tests, and load tests required
diff --git a/agentic-rag-authorization/data/documents/engineering-spec-015.txt b/agentic-rag-authorization/data/documents/engineering-spec-015.txt
new file mode 100644
index 0000000..e48a7a1
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/engineering-spec-015.txt
@@ -0,0 +1,26 @@
+Title: Search Engine Specification
+Department: engineering
+Classification: internal
+Type: Technical Specification
+
+Version: 1.0
+Status: Draft
+
+Overview:
+Technical specification for new service component
+
+Requirements:
+- High availability
+- Low latency
+- Scalability
+- Security
+
+Design:
+RESTful API design with JSON payloads
+Stateless service architecture
+
+Implementation Notes:
+Use existing frameworks and libraries
+Follow team coding standards
+
+Testing Strategy: Unit tests, integration tests, and load tests required
diff --git a/agentic-rag-authorization/data/documents/finance-analysis-008.txt b/agentic-rag-authorization/data/documents/finance-analysis-008.txt
new file mode 100644
index 0000000..f3e875e
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/finance-analysis-008.txt
@@ -0,0 +1,23 @@
+Title: Financial Analysis - 008
+Department: finance
+Classification: confidential
+Type: Financial Analysis
+
+Subject: Market and financial trends
+Date: 2024-01-15
+
+Executive Summary:
+Analysis shows positive trends with manageable risks
+
+Detailed Analysis:
+Detailed breakdown of financial metrics and trends
+Comparison to industry benchmarks
+
+Risk Assessment:
+Market volatility: Medium
+Currency risk: Low
+Credit risk: Low
+
+Recommendations: Maintain current strategy
+Hedge currency exposure
+Diversify revenue streams
diff --git a/agentic-rag-authorization/data/documents/finance-analysis-009.txt b/agentic-rag-authorization/data/documents/finance-analysis-009.txt
new file mode 100644
index 0000000..a62b6e9
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/finance-analysis-009.txt
@@ -0,0 +1,23 @@
+Title: Financial Analysis - 009
+Department: finance
+Classification: confidential
+Type: Financial Analysis
+
+Subject: Market and financial trends
+Date: 2024-04-05
+
+Executive Summary:
+Analysis shows positive trends with manageable risks
+
+Detailed Analysis:
+Detailed breakdown of financial metrics and trends
+Comparison to industry benchmarks
+
+Risk Assessment:
+Market volatility: Medium
+Currency risk: Low
+Credit risk: Low
+
+Recommendations: Maintain current strategy
+Hedge currency exposure
+Diversify revenue streams
diff --git a/agentic-rag-authorization/data/documents/finance-memo-010.txt b/agentic-rag-authorization/data/documents/finance-memo-010.txt
new file mode 100644
index 0000000..6f350db
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/finance-memo-010.txt
@@ -0,0 +1,19 @@
+Title: Finance Update - 010
+Department: finance
+Classification: internal
+Type: Finance Memo
+
+Date: 2024-01-15
+From: Finance Department
+
+Subject: Financial planning update
+
+Background:
+Budget review and planning cycle
+
+Financial Impact:
+Adjustments to departmental budgets
+Revised forecasts
+
+Next Steps: Department reviews
+Final approval by month end
diff --git a/agentic-rag-authorization/data/documents/finance-policy-005.txt b/agentic-rag-authorization/data/documents/finance-policy-005.txt
new file mode 100644
index 0000000..a9c6b4f
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/finance-policy-005.txt
@@ -0,0 +1,23 @@
+Title: Finance Policy - 005
+Department: finance
+Classification: internal
+Type: Finance Policy
+
+Policy: Financial Control Policy 005
+
+Objective:
+Ensure proper financial controls and compliance
+
+Guidelines:
+- Follow approval hierarchies
+- Maintain documentation
+- Regular audits
+- Expense limits
+
+Approval Requirements:
+Manager approval: Up to $5K
+Director approval: Up to $50K
+CFO approval: Above $50K
+
+Compliance: SOX compliance required
+Regular internal audits
diff --git a/agentic-rag-authorization/data/documents/finance-policy-006.txt b/agentic-rag-authorization/data/documents/finance-policy-006.txt
new file mode 100644
index 0000000..7fd2a59
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/finance-policy-006.txt
@@ -0,0 +1,23 @@
+Title: Finance Policy - 006
+Department: finance
+Classification: internal
+Type: Finance Policy
+
+Policy: Financial Control Policy 006
+
+Objective:
+Ensure proper financial controls and compliance
+
+Guidelines:
+- Follow approval hierarchies
+- Maintain documentation
+- Regular audits
+- Expense limits
+
+Approval Requirements:
+Manager approval: Up to $5K
+Director approval: Up to $50K
+CFO approval: Above $50K
+
+Compliance: SOX compliance required
+Regular internal audits
diff --git a/agentic-rag-authorization/data/documents/finance-policy-007.txt b/agentic-rag-authorization/data/documents/finance-policy-007.txt
new file mode 100644
index 0000000..931d2cf
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/finance-policy-007.txt
@@ -0,0 +1,23 @@
+Title: Finance Policy - 007
+Department: finance
+Classification: internal
+Type: Finance Policy
+
+Policy: Financial Control Policy 007
+
+Objective:
+Ensure proper financial controls and compliance
+
+Guidelines:
+- Follow approval hierarchies
+- Maintain documentation
+- Regular audits
+- Expense limits
+
+Approval Requirements:
+Manager approval: Up to $5K
+Director approval: Up to $50K
+CFO approval: Above $50K
+
+Compliance: SOX compliance required
+Regular internal audits
diff --git a/agentic-rag-authorization/data/documents/finance-report-001.txt b/agentic-rag-authorization/data/documents/finance-report-001.txt
new file mode 100644
index 0000000..e89bd54
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/finance-report-001.txt
@@ -0,0 +1,26 @@
+Title: Investment Analysis
+Department: finance
+Classification: confidential
+Type: Financial Report
+
+Period: Q4 2024
+Report Type: Budget Analysis
+
+Summary:
+Financial performance remains strong with revenue growth and controlled expenses
+
+Key Metrics:
+Revenue: $10M (+15% YoY)
+Expenses: $7M
+Profit Margin: 30%
+
+Analysis:
+Strong revenue growth driven by enterprise sales
+Operating expenses well-managed
+
+Recommendations:
+Continue investing in growth
+Monitor expense ratios
+Expand into new markets
+
+Approved By: CFO
diff --git a/agentic-rag-authorization/data/documents/finance-report-002.txt b/agentic-rag-authorization/data/documents/finance-report-002.txt
new file mode 100644
index 0000000..1b2d0bf
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/finance-report-002.txt
@@ -0,0 +1,26 @@
+Title: Investment Analysis
+Department: finance
+Classification: confidential
+Type: Financial Report
+
+Period: Q4 2024
+Report Type: Expense Report
+
+Summary:
+Financial performance remains strong with revenue growth and controlled expenses
+
+Key Metrics:
+Revenue: $10M (+15% YoY)
+Expenses: $7M
+Profit Margin: 30%
+
+Analysis:
+Strong revenue growth driven by enterprise sales
+Operating expenses well-managed
+
+Recommendations:
+Continue investing in growth
+Monitor expense ratios
+Expand into new markets
+
+Approved By: CFO
diff --git a/agentic-rag-authorization/data/documents/finance-report-003.txt b/agentic-rag-authorization/data/documents/finance-report-003.txt
new file mode 100644
index 0000000..cccbe46
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/finance-report-003.txt
@@ -0,0 +1,26 @@
+Title: Quarterly Financial Review
+Department: finance
+Classification: confidential
+Type: Financial Report
+
+Period: FY 2024
+Report Type: Expense Report
+
+Summary:
+Financial performance remains strong with revenue growth and controlled expenses
+
+Key Metrics:
+Revenue: $10M (+15% YoY)
+Expenses: $7M
+Profit Margin: 30%
+
+Analysis:
+Strong revenue growth driven by enterprise sales
+Operating expenses well-managed
+
+Recommendations:
+Continue investing in growth
+Monitor expense ratios
+Expand into new markets
+
+Approved By: CFO
diff --git a/agentic-rag-authorization/data/documents/finance-report-004.txt b/agentic-rag-authorization/data/documents/finance-report-004.txt
new file mode 100644
index 0000000..56071e7
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/finance-report-004.txt
@@ -0,0 +1,26 @@
+Title: Budget Analysis
+Department: finance
+Classification: confidential
+Type: Financial Report
+
+Period: Q3 2024
+Report Type: Expense Report
+
+Summary:
+Financial performance remains strong with revenue growth and controlled expenses
+
+Key Metrics:
+Revenue: $10M (+15% YoY)
+Expenses: $7M
+Profit Margin: 30%
+
+Analysis:
+Strong revenue growth driven by enterprise sales
+Operating expenses well-managed
+
+Recommendations:
+Continue investing in growth
+Monitor expense ratios
+Expand into new markets
+
+Approved By: CFO
diff --git a/agentic-rag-authorization/data/documents/hr-guide-005.txt b/agentic-rag-authorization/data/documents/hr-guide-005.txt
new file mode 100644
index 0000000..34bb3a9
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/hr-guide-005.txt
@@ -0,0 +1,19 @@
+Title: Performance Reviews Employee Guide
+Department: hr
+Classification: internal
+Type: Employee Guide
+
+Topic: Performance Reviews
+
+Overview:
+This guide provides information to help you navigate company processes
+
+Employee Responsibilities:
+- Follow company policies
+- Complete required training
+- Communicate with manager
+
+Resources:
+HR portal, manager, employee handbook
+
+Contact Information: hr@company.com
diff --git a/agentic-rag-authorization/data/documents/hr-guide-006.txt b/agentic-rag-authorization/data/documents/hr-guide-006.txt
new file mode 100644
index 0000000..6297874
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/hr-guide-006.txt
@@ -0,0 +1,19 @@
+Title: Remote Work Guidelines Employee Guide
+Department: hr
+Classification: internal
+Type: Employee Guide
+
+Topic: Remote Work Guidelines
+
+Overview:
+This guide provides information to help you navigate company processes
+
+Employee Responsibilities:
+- Follow company policies
+- Complete required training
+- Communicate with manager
+
+Resources:
+HR portal, manager, employee handbook
+
+Contact Information: hr@company.com
diff --git a/agentic-rag-authorization/data/documents/hr-guide-007.txt b/agentic-rag-authorization/data/documents/hr-guide-007.txt
new file mode 100644
index 0000000..9fb3b22
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/hr-guide-007.txt
@@ -0,0 +1,19 @@
+Title: Professional Development Employee Guide
+Department: hr
+Classification: internal
+Type: Employee Guide
+
+Topic: Professional Development
+
+Overview:
+This guide provides information to help you navigate company processes
+
+Employee Responsibilities:
+- Follow company policies
+- Complete required training
+- Communicate with manager
+
+Resources:
+HR portal, manager, employee handbook
+
+Contact Information: hr@company.com
diff --git a/agentic-rag-authorization/data/documents/hr-handbook-008.txt b/agentic-rag-authorization/data/documents/hr-handbook-008.txt
new file mode 100644
index 0000000..1b22fc3
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/hr-handbook-008.txt
@@ -0,0 +1,17 @@
+Title: Employee Handbook - Workplace Culture
+Department: hr
+Classification: internal
+Type: HR Handbook
+
+Section: Workplace Culture
+
+Introduction:
+This section outlines important policies and expectations
+
+Policies:
+Detailed policies and procedures for this area
+
+Procedures:
+Step-by-step guidance for common scenarios
+
+Resources: Additional resources and contacts
diff --git a/agentic-rag-authorization/data/documents/hr-handbook-009.txt b/agentic-rag-authorization/data/documents/hr-handbook-009.txt
new file mode 100644
index 0000000..c03e9af
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/hr-handbook-009.txt
@@ -0,0 +1,17 @@
+Title: Employee Handbook - Compensation and Benefits
+Department: hr
+Classification: internal
+Type: HR Handbook
+
+Section: Compensation and Benefits
+
+Introduction:
+This section outlines important policies and expectations
+
+Policies:
+Detailed policies and procedures for this area
+
+Procedures:
+Step-by-step guidance for common scenarios
+
+Resources: Additional resources and contacts
diff --git a/agentic-rag-authorization/data/documents/hr-memo-010.txt b/agentic-rag-authorization/data/documents/hr-memo-010.txt
new file mode 100644
index 0000000..0cb623e
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/hr-memo-010.txt
@@ -0,0 +1,18 @@
+Title: HR Announcement - 010
+Department: hr
+Classification: internal
+Type: HR Memo
+
+Date: 2024-03-10
+To: All Employees
+
+Subject: Important HR update
+
+Announcement:
+We are pleased to announce updates to company policies and benefits
+
+Details:
+Changes take effect next quarter
+New benefits include expanded coverage
+
+Action Required: Review changes and contact HR with questions
diff --git a/agentic-rag-authorization/data/documents/hr-policy-001.txt b/agentic-rag-authorization/data/documents/hr-policy-001.txt
new file mode 100644
index 0000000..b558ec4
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/hr-policy-001.txt
@@ -0,0 +1,24 @@
+Title: HR Policy - 001
+Department: hr
+Classification: internal
+Type: HR Policy
+
+Policy Number: HR-001
+Effective Date: 2024-02-20
+
+Purpose:
+To establish clear guidelines and ensure consistent practices
+
+Scope:
+This policy applies to all employees
+
+Policy Statement:
+The company is committed to maintaining a professional and inclusive workplace
+
+Procedures:
+1. Review policy
+2. Acknowledge understanding
+3. Follow guidelines
+4. Report violations
+
+Violations: Violations may result in disciplinary action up to and including termination
diff --git a/agentic-rag-authorization/data/documents/hr-policy-002.txt b/agentic-rag-authorization/data/documents/hr-policy-002.txt
new file mode 100644
index 0000000..2d89447
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/hr-policy-002.txt
@@ -0,0 +1,24 @@
+Title: HR Policy - 002
+Department: hr
+Classification: internal
+Type: HR Policy
+
+Policy Number: HR-002
+Effective Date: 2024-01-15
+
+Purpose:
+To establish clear guidelines and ensure consistent practices
+
+Scope:
+This policy applies to all employees
+
+Policy Statement:
+The company is committed to maintaining a professional and inclusive workplace
+
+Procedures:
+1. Review policy
+2. Acknowledge understanding
+3. Follow guidelines
+4. Report violations
+
+Violations: Violations may result in disciplinary action up to and including termination
diff --git a/agentic-rag-authorization/data/documents/hr-policy-003.txt b/agentic-rag-authorization/data/documents/hr-policy-003.txt
new file mode 100644
index 0000000..278a3a9
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/hr-policy-003.txt
@@ -0,0 +1,24 @@
+Title: HR Policy - 003
+Department: hr
+Classification: internal
+Type: HR Policy
+
+Policy Number: HR-003
+Effective Date: 2024-02-20
+
+Purpose:
+To establish clear guidelines and ensure consistent practices
+
+Scope:
+This policy applies to all employees
+
+Policy Statement:
+The company is committed to maintaining a professional and inclusive workplace
+
+Procedures:
+1. Review policy
+2. Acknowledge understanding
+3. Follow guidelines
+4. Report violations
+
+Violations: Violations may result in disciplinary action up to and including termination
diff --git a/agentic-rag-authorization/data/documents/hr-policy-004.txt b/agentic-rag-authorization/data/documents/hr-policy-004.txt
new file mode 100644
index 0000000..4b6884b
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/hr-policy-004.txt
@@ -0,0 +1,24 @@
+Title: HR Policy - 004
+Department: hr
+Classification: internal
+Type: HR Policy
+
+Policy Number: HR-004
+Effective Date: 2024-03-10
+
+Purpose:
+To establish clear guidelines and ensure consistent practices
+
+Scope:
+This policy applies to all employees
+
+Policy Statement:
+The company is committed to maintaining a professional and inclusive workplace
+
+Procedures:
+1. Review policy
+2. Acknowledge understanding
+3. Follow guidelines
+4. Report violations
+
+Violations: Violations may result in disciplinary action up to and including termination
diff --git a/agentic-rag-authorization/data/documents/public-handbook-001.txt b/agentic-rag-authorization/data/documents/public-handbook-001.txt
new file mode 100644
index 0000000..7e5fa79
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/public-handbook-001.txt
@@ -0,0 +1,19 @@
+Title: Company Handbook - Getting Started
+Department: public
+Classification: public
+Type: Company Handbook
+
+Section: Getting Started
+
+Introduction:
+Welcome! This handbook helps you understand our company culture and practices
+
+Content:
+Detailed information about company values, expectations, and resources
+
+Key Points:
+- We value integrity and transparency
+- We support growth and development
+- We foster collaboration
+
+Additional Resources: Company intranet, manager, HR team
diff --git a/agentic-rag-authorization/data/documents/public-handbook-002.txt b/agentic-rag-authorization/data/documents/public-handbook-002.txt
new file mode 100644
index 0000000..9bdf506
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/public-handbook-002.txt
@@ -0,0 +1,19 @@
+Title: Company Handbook - Code of Conduct
+Department: public
+Classification: public
+Type: Company Handbook
+
+Section: Code of Conduct
+
+Introduction:
+Welcome! This handbook helps you understand our company culture and practices
+
+Content:
+Detailed information about company values, expectations, and resources
+
+Key Points:
+- We value integrity and transparency
+- We support growth and development
+- We foster collaboration
+
+Additional Resources: Company intranet, manager, HR team
diff --git a/agentic-rag-authorization/data/documents/public-handbook-003.txt b/agentic-rag-authorization/data/documents/public-handbook-003.txt
new file mode 100644
index 0000000..7e5fa79
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/public-handbook-003.txt
@@ -0,0 +1,19 @@
+Title: Company Handbook - Getting Started
+Department: public
+Classification: public
+Type: Company Handbook
+
+Section: Getting Started
+
+Introduction:
+Welcome! This handbook helps you understand our company culture and practices
+
+Content:
+Detailed information about company values, expectations, and resources
+
+Key Points:
+- We value integrity and transparency
+- We support growth and development
+- We foster collaboration
+
+Additional Resources: Company intranet, manager, HR team
diff --git a/agentic-rag-authorization/data/documents/public-policy-004.txt b/agentic-rag-authorization/data/documents/public-policy-004.txt
new file mode 100644
index 0000000..4baf5f5
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/public-policy-004.txt
@@ -0,0 +1,16 @@
+Title: Company Policy - 004
+Department: public
+Classification: public
+Type: Company Policy
+
+Policy: General Policy 004
+
+Overview:
+This policy applies to all employees and outlines expectations
+
+Guidelines:
+- Treat others with respect
+- Communicate professionally
+- Follow company standards
+
+Contact: For questions, contact your manager or HR
diff --git a/agentic-rag-authorization/data/documents/public-policy-005.txt b/agentic-rag-authorization/data/documents/public-policy-005.txt
new file mode 100644
index 0000000..e90145f
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/public-policy-005.txt
@@ -0,0 +1,16 @@
+Title: Company Policy - 005
+Department: public
+Classification: public
+Type: Company Policy
+
+Policy: General Policy 005
+
+Overview:
+This policy applies to all employees and outlines expectations
+
+Guidelines:
+- Treat others with respect
+- Communicate professionally
+- Follow company standards
+
+Contact: For questions, contact your manager or HR
diff --git a/agentic-rag-authorization/data/documents/sales-guide-005.txt b/agentic-rag-authorization/data/documents/sales-guide-005.txt
new file mode 100644
index 0000000..3437bc8
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/sales-guide-005.txt
@@ -0,0 +1,27 @@
+Title: Developer Tools Sales Guide
+Department: sales
+Classification: internal
+Type: Sales Guide
+
+Product: Developer Tools
+
+Key Features:
+- Enterprise-grade security
+- Scalable architecture
+- 24/7 support
+- Custom integrations
+
+Target Market:
+Enterprise customers with complex integration needs
+
+Competitive Advantages:
+- Market-leading features
+- Proven track record
+- Superior support
+
+Common Objections & Responses:
+Price: Emphasize ROI and TCO
+Complexity: Highlight managed services
+Security: Share compliance certifications
+
+Resources: Product demos, case studies, ROI calculator
diff --git a/agentic-rag-authorization/data/documents/sales-guide-006.txt b/agentic-rag-authorization/data/documents/sales-guide-006.txt
new file mode 100644
index 0000000..8a01eb1
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/sales-guide-006.txt
@@ -0,0 +1,27 @@
+Title: Integration Hub Sales Guide
+Department: sales
+Classification: internal
+Type: Sales Guide
+
+Product: Integration Hub
+
+Key Features:
+- Enterprise-grade security
+- Scalable architecture
+- 24/7 support
+- Custom integrations
+
+Target Market:
+Enterprise customers with complex integration needs
+
+Competitive Advantages:
+- Market-leading features
+- Proven track record
+- Superior support
+
+Common Objections & Responses:
+Price: Emphasize ROI and TCO
+Complexity: Highlight managed services
+Security: Share compliance certifications
+
+Resources: Product demos, case studies, ROI calculator
diff --git a/agentic-rag-authorization/data/documents/sales-guide-007.txt b/agentic-rag-authorization/data/documents/sales-guide-007.txt
new file mode 100644
index 0000000..a87046d
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/sales-guide-007.txt
@@ -0,0 +1,27 @@
+Title: Security Framework Sales Guide
+Department: sales
+Classification: internal
+Type: Sales Guide
+
+Product: Security Framework
+
+Key Features:
+- Enterprise-grade security
+- Scalable architecture
+- 24/7 support
+- Custom integrations
+
+Target Market:
+Enterprise customers with complex integration needs
+
+Competitive Advantages:
+- Market-leading features
+- Proven track record
+- Superior support
+
+Common Objections & Responses:
+Price: Emphasize ROI and TCO
+Complexity: Highlight managed services
+Security: Share compliance certifications
+
+Resources: Product demos, case studies, ROI calculator
diff --git a/agentic-rag-authorization/data/documents/sales-playbook-008.txt b/agentic-rag-authorization/data/documents/sales-playbook-008.txt
new file mode 100644
index 0000000..311926c
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/sales-playbook-008.txt
@@ -0,0 +1,29 @@
+Title: Sales Playbook - 008
+Department: sales
+Classification: internal
+Type: Sales Playbook
+
+Target Segment: Enterprise
+
+Discovery Questions:
+- What are your current pain points?
+- What solutions have you tried?
+- What are your goals?
+
+Qualification Criteria:
+- Budget confirmed
+- Timeline defined
+- Decision makers identified
+
+Demo Flow:
+1. Understand needs
+2. Show relevant features
+3. Address concerns
+4. Propose next steps
+
+Closing Strategies:
+Trial close throughout
+Summarize value
+Address final objections
+
+Success Metrics: Close rate, deal size, sales cycle length
diff --git a/agentic-rag-authorization/data/documents/sales-playbook-009.txt b/agentic-rag-authorization/data/documents/sales-playbook-009.txt
new file mode 100644
index 0000000..0691191
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/sales-playbook-009.txt
@@ -0,0 +1,29 @@
+Title: Sales Playbook - 009
+Department: sales
+Classification: internal
+Type: Sales Playbook
+
+Target Segment: Enterprise
+
+Discovery Questions:
+- What are your current pain points?
+- What solutions have you tried?
+- What are your goals?
+
+Qualification Criteria:
+- Budget confirmed
+- Timeline defined
+- Decision makers identified
+
+Demo Flow:
+1. Understand needs
+2. Show relevant features
+3. Address concerns
+4. Propose next steps
+
+Closing Strategies:
+Trial close throughout
+Summarize value
+Address final objections
+
+Success Metrics: Close rate, deal size, sales cycle length
diff --git a/agentic-rag-authorization/data/documents/sales-proposal-001.txt b/agentic-rag-authorization/data/documents/sales-proposal-001.txt
new file mode 100644
index 0000000..87f4c7f
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/sales-proposal-001.txt
@@ -0,0 +1,24 @@
+Title: Sales Proposal - Innovation Partners
+Department: sales
+Classification: confidential
+Type: Sales Proposal
+
+Client: Global Solutions
+Opportunity: $500K Annual Contract
+
+Executive Summary:
+We propose a comprehensive solution to address your business needs and drive growth.
+
+Proposed Solution:
+Integration Hub tailored to your requirements
+
+Pricing:
+Custom pricing based on usage and scale
+Volume discounts available
+
+Timeline:
+30-day implementation with ongoing support
+
+Next Steps: Schedule technical review
+Customize proposal
+Finalize contract
diff --git a/agentic-rag-authorization/data/documents/sales-proposal-002.txt b/agentic-rag-authorization/data/documents/sales-proposal-002.txt
new file mode 100644
index 0000000..8602eae
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/sales-proposal-002.txt
@@ -0,0 +1,24 @@
+Title: Sales Proposal - Innovation Partners
+Department: sales
+Classification: confidential
+Type: Sales Proposal
+
+Client: Digital Ventures
+Opportunity: $250K Pilot Program
+
+Executive Summary:
+We propose a comprehensive solution to address your business needs and drive growth.
+
+Proposed Solution:
+Security Framework tailored to your requirements
+
+Pricing:
+Custom pricing based on usage and scale
+Volume discounts available
+
+Timeline:
+30-day implementation with ongoing support
+
+Next Steps: Schedule technical review
+Customize proposal
+Finalize contract
diff --git a/agentic-rag-authorization/data/documents/sales-proposal-003.txt b/agentic-rag-authorization/data/documents/sales-proposal-003.txt
new file mode 100644
index 0000000..aa13cbe
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/sales-proposal-003.txt
@@ -0,0 +1,24 @@
+Title: Sales Proposal - Digital Ventures
+Department: sales
+Classification: confidential
+Type: Sales Proposal
+
+Client: Global Solutions
+Opportunity: $250K Pilot Program
+
+Executive Summary:
+We propose a comprehensive solution to address your business needs and drive growth.
+
+Proposed Solution:
+Enterprise Platform tailored to your requirements
+
+Pricing:
+Custom pricing based on usage and scale
+Volume discounts available
+
+Timeline:
+30-day implementation with ongoing support
+
+Next Steps: Schedule technical review
+Customize proposal
+Finalize contract
diff --git a/agentic-rag-authorization/data/documents/sales-proposal-004.txt b/agentic-rag-authorization/data/documents/sales-proposal-004.txt
new file mode 100644
index 0000000..1a84e1e
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/sales-proposal-004.txt
@@ -0,0 +1,24 @@
+Title: Sales Proposal - Enterprise Systems LLC
+Department: sales
+Classification: confidential
+Type: Sales Proposal
+
+Client: Enterprise Systems LLC
+Opportunity: $250K Pilot Program
+
+Executive Summary:
+We propose a comprehensive solution to address your business needs and drive growth.
+
+Proposed Solution:
+Security Framework tailored to your requirements
+
+Pricing:
+Custom pricing based on usage and scale
+Volume discounts available
+
+Timeline:
+30-day implementation with ongoing support
+
+Next Steps: Schedule technical review
+Customize proposal
+Finalize contract
diff --git a/agentic-rag-authorization/data/documents/sales-report-010.txt b/agentic-rag-authorization/data/documents/sales-report-010.txt
new file mode 100644
index 0000000..e45e5b2
--- /dev/null
+++ b/agentic-rag-authorization/data/documents/sales-report-010.txt
@@ -0,0 +1,21 @@
+Title: Sales Report - Q1 2024
+Department: sales
+Classification: internal
+Type: Sales Report
+
+Period: Q1 2024
+Region: North America
+
+Performance Summary:
+Strong quarter with several major deals closed and healthy pipeline
+
+Key Wins:
+- Digital Ventures: $500K
+- Major enterprise deal: $1.2M
+
+Pipeline Analysis:
+Qualified opportunities totaling $5M
+Forecast confidence: High
+
+Recommendations: Invest in enterprise sales team
+Expand partner channel
diff --git a/agentic-rag-authorization/data/schema.zed b/agentic-rag-authorization/data/schema.zed
new file mode 100644
index 0000000..5731736
--- /dev/null
+++ b/agentic-rag-authorization/data/schema.zed
@@ -0,0 +1,14 @@
+definition user {}
+
+definition department {
+    relation member: user
+}
+
+definition document {
+    relation owner: user
+    relation viewer: user | department#member
+    relation department_doc: department
+
+    permission view = viewer + owner
+    permission edit = owner
+}
diff --git a/agentic-rag-authorization/docker-compose.yml b/agentic-rag-authorization/docker-compose.yml
new file mode 100644
index 0000000..df61d9b
--- /dev/null
+++ b/agentic-rag-authorization/docker-compose.yml
@@ -0,0 +1,31 @@
+---
+version: '3.8'
+
+services:
+  weaviate:
+    image: "cr.weaviate.io/semitechnologies/weaviate:latest"
+    ports:
+      - "8080:8080"  # HTTP and gRPC both use this port
+    environment:
+      QUERY_DEFAULTS_LIMIT: 25
+      AUTHENTICATION_ANONYMOUS_ACCESS_ENABLED: 'true'
+      PERSISTENCE_DATA_PATH: '/var/lib/weaviate'
+      DEFAULT_VECTORIZER_MODULE: 'text2vec-openai'
+      ENABLE_MODULES: 'text2vec-openai'
+      CLUSTER_HOSTNAME: 'node1'
+      OPENAI_APIKEY: "${OPENAI_API_KEY}"
+    volumes:
+      - "weaviate_data:/var/lib/weaviate"
+    env_file:
+      - ".env"
+
+  spicedb:
+    image: "authzed/spicedb:latest"
+    command: "serve --grpc-preshared-key \"devtoken\""
+    ports:
+      - "50051:50051"
+    environment:
+      SPICEDB_DATASTORE_ENGINE: "memory"
+
+volumes:
+  weaviate_data:
diff --git a/agentic-rag-authorization/examples/__init__.py b/agentic-rag-authorization/examples/__init__.py
new file mode 100644
index 0000000..70ec8a0
--- /dev/null
+++ b/agentic-rag-authorization/examples/__init__.py
@@ -0,0 +1 @@
+"""Example scripts for agentic RAG system."""
diff --git a/agentic-rag-authorization/examples/basic_example.py b/agentic-rag-authorization/examples/basic_example.py
new file mode 100644
index 0000000..7bca4eb
--- /dev/null
+++ b/agentic-rag-authorization/examples/basic_example.py
@@ -0,0 +1,121 @@
+"""Basic example showing agentic RAG with authorization."""
+
+import sys
+import os
+
+# Add parent directory to path so we can import from agentic_rag
+sys.path.insert(0, os.path.dirname(os.path.dirname(os.path.abspath(__file__))))
+
+import asyncio
+from agentic_rag.graph import run_agentic_rag_async
+from agentic_rag.config import get_config
+
+
+async def run_query(query: str, subject_id: str):
+    """Run a single query through the agentic RAG system."""
+    print(f"\n{'='*60}")
+    print(f"Query: {query}")
+    print(f"User: {subject_id}")
+    print('='*60)
+
+    # Use the simplified helper function
+    result = await run_agentic_rag_async(
+        query=query,
+        subject_id=subject_id,
+        max_attempts=1
+    )
+
+    print(f"\n📊 Results:")
+    print(f"  - Retrieved: {len(result['retrieved_documents'])} documents")
+    print(f"  - Authorized: {len(result['authorized_documents'])} documents")
+    print(f"  - Denied: {result['denied_count']} documents")
+    print(f"  - Attempts: {result['retrieval_attempt']}")
+
+    if result['authorized_documents']:
+        print(f"\n📄 Authorized Documents:")
+        for doc in result['authorized_documents']:
+            print(f"  - {doc.metadata['doc_id']}: {doc.metadata['title']}")
+
+    print(f"\n💭 Agent Reasoning:")
+    for i, reasoning in enumerate(result['reasoning'], 1):
+        print(f"  {i}. {reasoning[:100]}...")
+
+    print(f"\n✨ Answer:")
+    print(f"{result['answer']}")
+    print()
+
+    return result
+
+
+async def main():
+    """Run basic examples."""
+    config = get_config()
+
+    if not config.openai_api_key:
+        print("❌ Error: OPENAI_API_KEY not set")
+        print("Please set it in your .env file or environment")
+        return
+
+    print("\n" + "="*60)
+    print("Agentic RAG with Authorization - Basic Examples")
+    print("="*60)
+
+    # Example 1: Alice (engineering) queries engineering documents
+    print("\n🔵 SCENARIO 1: Department Access - Engineering")
+    await run_query(
+        "What are our microservices architecture patterns?",
+        "alice"
+    )
+
+    # Example 2: Bob (sales) queries sales documents
+    print("\n🔵 SCENARIO 2: Department Access - Sales")
+    await run_query(
+        "What sales proposals do we have?",
+        "bob"
+    )
+
+    # Example 3: Cross-department document access
+    print("\n🔵 SCENARIO 3: Cross-Department Access")
+    await run_query(
+        "What architecture documentation is available for sales?",
+        "bob"
+    )
+
+    # Example 4: Individual exception - Alice accessing sales doc
+    print("\n🔵 SCENARIO 4: Individual Exception")
+    await run_query(
+        "Show me sales proposals",
+        "alice"
+    )
+
+    # Example 5: Public document access
+    print("\n🔵 SCENARIO 5: Public Document Access")
+    await run_query(
+        "What are the company handbook guidelines?",
+        "bob"
+    )
+
+    # Example 6: Finance manager queries
+    print("\n🔵 SCENARIO 6: Finance Department Access")
+    await run_query(
+        "What are the quarterly financial reports?",
+        "finance_manager"
+    )
+
+    # Example 7: Access denial - Alice queries sales (except individual exception)
+    print("\n🔵 SCENARIO 7: Access Denial")
+    await run_query(
+        "What are all the sales playbooks?",
+        "alice"
+    )
+
+    # Example 8: HR manager queries
+    print("\n🔵 SCENARIO 8: HR Department Access")
+    await run_query(
+        "What HR policies do we have?",
+        "hr_manager"
+    )
+
+
+if __name__ == "__main__":
+    asyncio.run(main())
diff --git a/agentic-rag-authorization/examples/setup_environment.py b/agentic-rag-authorization/examples/setup_environment.py
new file mode 100644
index 0000000..8d2cc0e
--- /dev/null
+++ b/agentic-rag-authorization/examples/setup_environment.py
@@ -0,0 +1,276 @@
+"""Initialize Weaviate and SpiceDB with sample data."""
+
+import sys
+import os
+from dotenv import load_dotenv
+
+# Load environment variables
+load_dotenv()
+
+# Add parent directory to path so we can import from agentic_rag
+sys.path.insert(0, os.path.dirname(os.path.dirname(os.path.abspath(__file__))))
+
+import weaviate
+from authzed.api.v1 import (
+    WriteSchemaRequest,
+    WriteRelationshipsRequest,
+    Relationship,
+    RelationshipUpdate,
+    ObjectReference,
+    SubjectReference,
+)
+from agentic_rag.grpc_helpers import create_insecure_spicedb_client
+import json
+
+# Add scripts directory to path for document parser
+sys.path.insert(0, os.path.join(os.path.dirname(os.path.dirname(os.path.abspath(__file__))), 'scripts'))
+from parse_documents import load_all_documents
+
+
+def setup_spicedb():
+    """Setup SpiceDB schema and relationships."""
+    print("Setting up SpiceDB...")
+
+    client = create_insecure_spicedb_client("localhost:50051", "devtoken")
+
+    # Load schema
+    schema_path = os.path.join(os.path.dirname(__file__), "..", "data", "schema.zed")
+    with open(schema_path) as f:
+        schema = f.read()
+
+    client.WriteSchema(WriteSchemaRequest(schema=schema))
+    print("  ✅ Schema loaded")
+
+    # Load documents to get all doc_ids
+    documents = load_all_documents()
+
+    # Create user-department relationships
+    updates = [
+        # Alice is in engineering department
+        RelationshipUpdate(
+            operation=RelationshipUpdate.Operation.OPERATION_TOUCH,
+            relationship=Relationship(
+                resource=ObjectReference(
+                    object_type="department", object_id="engineering"
+                ),
+                relation="member",
+                subject=SubjectReference(
+                    object=ObjectReference(object_type="user", object_id="alice")
+                ),
+            ),
+        ),
+        # Bob is in sales department
+        RelationshipUpdate(
+            operation=RelationshipUpdate.Operation.OPERATION_TOUCH,
+            relationship=Relationship(
+                resource=ObjectReference(
+                    object_type="department", object_id="sales"
+                ),
+                relation="member",
+                subject=SubjectReference(
+                    object=ObjectReference(object_type="user", object_id="bob")
+                ),
+            ),
+        ),
+        # HR manager is in HR department
+        RelationshipUpdate(
+            operation=RelationshipUpdate.Operation.OPERATION_TOUCH,
+            relationship=Relationship(
+                resource=ObjectReference(
+                    object_type="department", object_id="hr"
+                ),
+                relation="member",
+                subject=SubjectReference(
+                    object=ObjectReference(object_type="user", object_id="hr_manager")
+                ),
+            ),
+        ),
+        # Finance manager is in finance department
+        RelationshipUpdate(
+            operation=RelationshipUpdate.Operation.OPERATION_TOUCH,
+            relationship=Relationship(
+                resource=ObjectReference(
+                    object_type="department", object_id="finance"
+                ),
+                relation="member",
+                subject=SubjectReference(
+                    object=ObjectReference(object_type="user", object_id="finance_manager")
+                ),
+            ),
+        ),
+    ]
+
+    # Create department-based document permissions
+    for doc in documents:
+        doc_id = doc['doc_id']
+        dept = doc['department']
+
+        # Public documents: accessible to all users
+        if dept == "public":
+            for user in ["alice", "bob", "hr_manager", "finance_manager"]:
+                updates.append(
+                    RelationshipUpdate(
+                        operation=RelationshipUpdate.Operation.OPERATION_TOUCH,
+                        relationship=Relationship(
+                            resource=ObjectReference(object_type="document", object_id=doc_id),
+                            relation="viewer",
+                            subject=SubjectReference(
+                                object=ObjectReference(object_type="user", object_id=user)
+                            ),
+                        ),
+                    )
+                )
+        else:
+            # Department documents: accessible to department members
+            updates.append(
+                RelationshipUpdate(
+                    operation=RelationshipUpdate.Operation.OPERATION_TOUCH,
+                    relationship=Relationship(
+                        resource=ObjectReference(object_type="document", object_id=doc_id),
+                        relation="viewer",
+                        subject=SubjectReference(
+                            object=ObjectReference(
+                                object_type="department",
+                                object_id=dept,
+                            ),
+                            optional_relation="member",
+                        ),
+                    ),
+                )
+            )
+
+    # Cross-department documents
+    cross_dept_docs = [
+        ("engineering-architecture-001", "sales"),  # Tech sales need architecture docs
+        ("sales-guide-005", "engineering"),  # Engineering needs to understand product positioning
+        ("hr-policy-001", "finance"),  # Finance needs HR policies for budget planning
+    ]
+
+    for doc_id, additional_dept in cross_dept_docs:
+        updates.append(
+            RelationshipUpdate(
+                operation=RelationshipUpdate.Operation.OPERATION_TOUCH,
+                relationship=Relationship(
+                    resource=ObjectReference(object_type="document", object_id=doc_id),
+                    relation="viewer",
+                    subject=SubjectReference(
+                        object=ObjectReference(
+                            object_type="department",
+                            object_id=additional_dept,
+                        ),
+                        optional_relation="member",
+                    ),
+                ),
+            )
+        )
+
+    # Individual user exceptions
+    individual_exceptions = [
+        ("alice", "sales-proposal-001"),  # Alice needs to see a technical sales proposal
+        ("finance_manager", "hr-policy-002"),  # Finance manager needs HR compensation policy
+        ("bob", "engineering-guide-006"),  # Bob needs technical documentation for sales
+    ]
+
+    for user, doc_id in individual_exceptions:
+        updates.append(
+            RelationshipUpdate(
+                operation=RelationshipUpdate.Operation.OPERATION_TOUCH,
+                relationship=Relationship(
+                    resource=ObjectReference(object_type="document", object_id=doc_id),
+                    relation="viewer",
+                    subject=SubjectReference(
+                        object=ObjectReference(object_type="user", object_id=user)
+                    ),
+                ),
+            )
+        )
+
+    client.WriteRelationships(WriteRelationshipsRequest(updates=updates))
+    print(f"  ✅ {len(updates)} relationships configured")
+    print("  Users and Departments:")
+    print("    - alice: engineering department")
+    print("    - bob: sales department")
+    print("    - hr_manager: hr department")
+    print("    - finance_manager: finance department")
+    print("  Permission Patterns:")
+    print(f"    - Department-based: All dept members access their dept docs")
+    print(f"    - Cross-department: 3 collaboration documents")
+    print(f"    - Individual exceptions: 3 special access grants")
+    print(f"    - Public access: 5 documents accessible to all users")
+
+
+def setup_weaviate():
+    """Setup Weaviate with sample documents."""
+    print("\nSetting up Weaviate...")
+
+    # Connect to Weaviate v3 (REST API)
+    client = weaviate.Client("http://127.0.0.1:8080")
+
+    try:
+        # Check if class exists and delete it
+        try:
+            client.schema.delete_class("Documents")
+            print("  ✅ Deleted existing Documents class")
+        except:
+            pass
+
+        # Create schema using v3 API (no vectorizer since we're using BM25 keyword search)
+        schema = {
+            "class": "Documents",
+            "vectorizer": "none",  # Disable vectorization for BM25 keyword search
+            "properties": [
+                {"name": "doc_id", "dataType": ["text"]},
+                {"name": "title", "dataType": ["text"]},
+                {"name": "content", "dataType": ["text"]},
+                {"name": "department", "dataType": ["text"]},
+                {"name": "classification", "dataType": ["text"]},
+            ],
+        }
+        client.schema.create_class(schema)
+        print("  ✅ Documents class created")
+
+        # Load documents from .txt files
+        documents = load_all_documents()
+        print(f"  ✅ Loaded {len(documents)} documents from data/documents/")
+
+        # Insert documents using v3 API
+        with client.batch as batch:
+            for doc in documents:
+                batch.add_data_object(
+                    data_object=doc,
+                    class_name="Documents",
+                )
+
+        print(f"  ✅ Inserted {len(documents)} documents")
+        print("  Document Distribution:")
+
+        # Count by department
+        dept_counts = {}
+        for doc in documents:
+            dept = doc['department']
+            dept_counts[dept] = dept_counts.get(dept, 0) + 1
+
+        for dept, count in sorted(dept_counts.items()):
+            print(f"    - {dept}: {count} documents")
+
+    finally:
+        pass  # v3 client doesn't need explicit close
+
+
+def main():
+    """Run setup."""
+    print("=" * 60)
+    print("Agentic RAG with Authorization - Environment Setup")
+    print("=" * 60)
+
+    setup_spicedb()
+    setup_weaviate()
+
+    print("\n" + "=" * 60)
+    print("✅ Setup complete!")
+    print("=" * 60)
+    print("\nYou can now run: python examples/basic_example.py")
+
+
+if __name__ == "__main__":
+    main()
diff --git a/agentic-rag-authorization/pyproject.toml b/agentic-rag-authorization/pyproject.toml
new file mode 100644
index 0000000..e96e902
--- /dev/null
+++ b/agentic-rag-authorization/pyproject.toml
@@ -0,0 +1,31 @@
+[project]
+name = "agentic-rag-weaviate"
+version = "0.1.0"
+description = "Agentic RAG with fine-grained authorization using Weaviate and SpiceDB"
+requires-python = ">=3.10"
+dependencies = [
+    "langchain>=0.1.0",
+    "langchain-openai>=0.1.0",
+    "langgraph>=0.0.20",
+    "langchain-spicedb>=0.1.0",
+    "weaviate-client>=4.4.0",
+    "authzed>=0.7.0",
+    "python-dotenv>=1.0.0",
+]
+
+[project.optional-dependencies]
+dev = [
+    "pytest>=7.0.0",
+    "pytest-asyncio>=0.21.0",
+    "ruff>=0.1.0",
+]
+
+[build-system]
+requires = ["setuptools>=61.0", "wheel"]
+build-backend = "setuptools.build_backend"
+
+[tool.setuptools]
+packages = ["agentic_rag", "agentic_rag.nodes", "agentic_rag.tools"]
+
+[tool.setuptools.package-data]
+agentic_rag = ["py.typed"]
diff --git a/agentic-rag-authorization/requirements.txt b/agentic-rag-authorization/requirements.txt
new file mode 100644
index 0000000..2eecaab
--- /dev/null
+++ b/agentic-rag-authorization/requirements.txt
@@ -0,0 +1,18 @@
+# Core dependencies
+langchain>=0.1.0
+langchain-openai>=0.1.0
+langgraph>=0.0.20
+weaviate-client>=3.26.0,<4.0  # v3 for REST API stability (no gRPC issues)
+authzed>=0.7.0
+python-dotenv>=1.0.0
+grpcio>=1.50.0
+grpcio-tools>=1.50.0
+
+# Web UI dependencies
+fastapi>=0.109.0
+uvicorn[standard]>=0.27.0
+
+# Development dependencies
+pytest>=7.0.0
+pytest-asyncio>=0.21.0
+ruff>=0.1.0
diff --git a/agentic-rag-authorization/run_ui.py b/agentic-rag-authorization/run_ui.py
new file mode 100755
index 0000000..a04b7c7
--- /dev/null
+++ b/agentic-rag-authorization/run_ui.py
@@ -0,0 +1,114 @@
+#!/usr/bin/env python3
+"""Launch script for the Agentic RAG UI."""
+
+import subprocess
+import sys
+import time
+import webbrowser
+import os
+
+
+def check_services():
+    """Pre-flight check for required services."""
+    print("🔍 Checking services...")
+
+    # Check if .env exists
+    if not os.path.exists(".env"):
+        print("  ⚠️  .env file not found")
+        print("     Copy .env.example to .env and configure it")
+        return False
+
+    # Check Weaviate
+    try:
+        from agentic_rag.config import get_config
+        from agentic_rag.weaviate_client import get_weaviate_client
+
+        config = get_config()
+        weaviate_client = get_weaviate_client(config.weaviate_url)
+        print("  ✅ Weaviate connected")
+    except Exception as e:
+        print(f"  ❌ Weaviate not available: {e}")
+        print("     Run: docker-compose up -d")
+        return False
+
+    # Check SpiceDB
+    try:
+        from agentic_rag.grpc_helpers import get_spicedb_client
+
+        spicedb_client = get_spicedb_client(config.spicedb_endpoint, config.spicedb_token)
+        print("  ✅ SpiceDB connected")
+    except Exception as e:
+        print(f"  ❌ SpiceDB not available: {e}")
+        print("     Run: docker-compose up -d")
+        return False
+
+    # Check OpenAI key
+    if not config.openai_api_key or config.openai_api_key == "your-openai-api-key-here":
+        print("  ❌ OPENAI_API_KEY not configured")
+        print("     Set it in .env file")
+        return False
+    print("  ✅ OpenAI API key configured")
+
+    # Check if documents are loaded
+    try:
+        result = weaviate_client.query.get("Documents", ["doc_id"]).with_limit(1).do()
+        doc_count = len(result.get("data", {}).get("Get", {}).get("Documents", []))
+        if doc_count > 0:
+            print("  ✅ Documents loaded in Weaviate")
+        else:
+            print("  ⚠️  No documents found in Weaviate")
+            print("     Run: python examples/setup_environment.py")
+            return False
+    except Exception as e:
+        print(f"  ⚠️  Could not verify documents: {e}")
+
+    return True
+
+
+def main():
+    """Launch the UI."""
+    print("🚀 Agentic RAG UI Launcher")
+    print("=" * 50)
+
+    if not check_services():
+        print("\n❌ Pre-flight checks failed. Please fix the issues above.")
+        sys.exit(1)
+
+    print("\n✅ All services ready!")
+    print("\n🌐 Starting FastAPI server...")
+    print("   URL: http://localhost:8000")
+    print("   API Docs: http://localhost:8000/docs")
+    print("   Press Ctrl+C to stop\n")
+
+    # Open browser after 2 seconds
+    def open_browser():
+        time.sleep(2)
+        print("🌐 Opening browser...")
+        webbrowser.open("http://localhost:8000")
+
+    import threading
+
+    threading.Thread(target=open_browser, daemon=True).start()
+
+    # Start uvicorn
+    try:
+        subprocess.run(
+            [
+                sys.executable,
+                "-m",
+                "uvicorn",
+                "api.main:app",
+                "--host",
+                "0.0.0.0",
+                "--port",
+                "8000",
+                "--reload",
+            ]
+        )
+    except KeyboardInterrupt:
+        print("\n\n👋 Shutting down...")
+        sys.exit(0)
+
+
+if __name__ == "__main__":
+    main()
diff --git a/agentic-rag-authorization/scripts/parse_documents.py b/agentic-rag-authorization/scripts/parse_documents.py
new file mode 100644
index 0000000..e962180
--- /dev/null
+++ b/agentic-rag-authorization/scripts/parse_documents.py
@@ -0,0 +1,66 @@
+"""Parse .txt document files and extract metadata."""
+
+import os
+import re
+
+
+def parse_document_file(filepath):
+    """Parse a .txt document file and extract metadata."""
+    filename = os.path.basename(filepath)
+
+    # Parse filename: {dept}-{category}-{num}.txt
+    match = re.match(r'([a-z]+)-([a-z]+)-(\d+)\.txt', filename)
+    if not match:
+        raise ValueError(f"Invalid filename format: {filename}")
+
+    dept, category, num = match.groups()
+    doc_id = f"{dept}-{category}-{num}"
+
+    # Read content
+    with open(filepath, 'r') as f:
+        content = f.read()
+
+    # Extract title from first line
+    lines = content.split('\n')
+    title = lines[0].replace('Title: ', '').strip() if lines else f"Document {doc_id}"
+
+    # Extract classification
+    classification = "internal"  # default
+    for line in lines:
+        if line.startswith('Classification:'):
+            classification = line.replace('Classification:', '').strip()
+            break
+
+    return {
+        "doc_id": doc_id,
+        "title": title,
+        "content": content,
+        "department": dept,
+        "classification": classification,
+        "category": category,
+    }
+
+
+def load_all_documents(docs_dir="data/documents"):
+    """Load all documents from data/documents/."""
+    documents = []
+
+    if not os.path.exists(docs_dir):
+        raise ValueError(f"Documents directory not found: {docs_dir}")
+
+    for filename in sorted(os.listdir(docs_dir)):
+        if filename.endswith('.txt'):
+            filepath = os.path.join(docs_dir, filename)
+            doc = parse_document_file(filepath)
+            documents.append(doc)
+
+    return documents
+
+
+if __name__ == "__main__":
+    # Test the parser
+    docs = load_all_documents()
+    print(f"Loaded {len(docs)} documents")
+    print(f"\nFirst 5 documents:")
+    for doc in docs[:5]:
+        print(f"  {doc['doc_id']}: {doc['title']} ({doc['classification']})")
diff --git a/agentic-rag-authorization/scripts/verify_permissions.py b/agentic-rag-authorization/scripts/verify_permissions.py
new file mode 100644
index 0000000..c38a0e6
--- /dev/null
+++ b/agentic-rag-authorization/scripts/verify_permissions.py
@@ -0,0 +1,100 @@
+"""Verify permission setup is correct."""
+
+import sys
+import os
+from dotenv import load_dotenv
+
+load_dotenv()
+
+# Add parent directory to path
+sys.path.insert(0, os.path.dirname(os.path.dirname(os.path.abspath(__file__))))
+
+from agentic_rag.grpc_helpers import create_insecure_spicedb_client
+from authzed.api.v1 import CheckPermissionRequest, ObjectReference, SubjectReference
+
+
+def check_permission(client, user, doc_id):
+    """Check if user can view document."""
+    request = CheckPermissionRequest(
+        resource=ObjectReference(object_type="document", object_id=doc_id),
+        permission="view",
+        subject=SubjectReference(
+            object=ObjectReference(object_type="user", object_id=user)
+        ),
+    )
+    response = client.CheckPermission(request)
+    return response.permissionship == 2  # HAS_PERMISSION
+
+
+def main():
+    """Run permission verification tests."""
+    print("=" * 60)
+    print("Permission Verification Tests")
+    print("=" * 60)
+
+    client = create_insecure_spicedb_client("localhost:50051", "devtoken")
+
+    tests = [
+        # Format: (description, user, doc_id, expected_access)
+
+        # Department access tests
+        ("Alice accesses engineering doc", "alice", "engineering-architecture-001", True),
+        ("Alice denied sales proposal 2", "alice", "sales-proposal-002", False),  # No exception for this one
+        ("Bob accesses sales doc", "bob", "sales-proposal-001", True),
+        ("Bob denied engineering guide 007", "bob", "engineering-guide-007", False),  # No exception for this one
+        ("HR manager accesses HR doc", "hr_manager", "hr-policy-001", True),
+        ("HR manager denied engineering doc", "hr_manager", "engineering-architecture-001", False),
+        ("Finance manager accesses finance doc", "finance_manager", "finance-report-001", True),
+        ("Finance manager denied sales doc", "finance_manager", "sales-proposal-001", False),
+
+        # Public document access
+        ("Alice accesses public doc", "alice", "public-handbook-001", True),
+        ("Bob accesses public doc", "bob", "public-handbook-001", True),
+        ("HR manager accesses public doc", "hr_manager", "public-handbook-001", True),
+        ("Finance manager accesses public doc", "finance_manager", "public-handbook-001", True),
+
+        # Cross-department access
+        ("Alice accesses sales guide (cross-dept)", "alice", "sales-guide-005", True),
+        ("Bob accesses engineering arch (cross-dept)", "bob", "engineering-architecture-001", True),
+        ("Finance manager accesses HR policy (cross-dept)", "finance_manager", "hr-policy-001", True),
+
+        # Individual exceptions
+        ("Alice accesses sales proposal (exception)", "alice", "sales-proposal-001", True),
+        ("Finance manager accesses HR policy 2 (exception)", "finance_manager", "hr-policy-002", True),
+        ("Bob accesses engineering guide (exception)", "bob", "engineering-guide-006", True),
+    ]
+
+    passed = 0
+    failed = 0
+
+    for description, user, doc_id, expected in tests:
+        try:
+            actual = check_permission(client, user, doc_id)
+            status = "✅" if actual == expected else "❌"
+
+            if actual == expected:
+                passed += 1
+            else:
+                failed += 1
+
+            result = "GRANTED" if actual else "DENIED"
+            expected_result = "GRANTED" if expected else "DENIED"
+
+            print(f"{status} {description}")
+            print(f"   User: {user}, Doc: {doc_id}")
+            print(f"   Result: {result}, Expected: {expected_result}")
+
+        except Exception as e:
+            failed += 1
+            print(f"❌ {description}")
+            print(f"   Error: {str(e)}")
+
+    print("\n" + "=" * 60)
+    print(f"Results: {passed} passed, {failed} failed")
+    print("=" * 60)
+
+    return failed == 0
+
+
+if __name__ == "__main__":
+    sys.exit(0 if main() else 1)
diff --git a/agentic-rag-authorization/test_dataset_integration.py b/agentic-rag-authorization/test_dataset_integration.py
new file mode 100644
index 0000000..6c7641d
--- /dev/null
+++ b/agentic-rag-authorization/test_dataset_integration.py
@@ -0,0 +1,171 @@
+"""Integration test for the realistic document dataset implementation."""
+
+import sys
+import os
+
+sys.path.insert(0, os.path.dirname(os.path.abspath(__file__)))
+sys.path.insert(0, os.path.join(os.path.dirname(os.path.abspath(__file__)), 'scripts'))
+
+from parse_documents import load_all_documents
+
+
+def test_document_loading():
+    """Test that documents can be loaded correctly."""
+    print("Testing document loading...")
+
+    docs = load_all_documents()
+
+    # Test count
+    assert len(docs) == 50, f"Expected 50 documents, got {len(docs)}"
+    print(f"  ✅ Loaded {len(docs)} documents")
+
+    # Test required fields
+    for doc in docs:
+        assert 'doc_id' in doc, f"Missing doc_id in {doc}"
+        assert 'title' in doc, f"Missing title in {doc}"
+        assert 'content' in doc, f"Missing content in {doc}"
+        assert 'department' in doc, f"Missing department in {doc}"
+        assert 'classification' in doc, f"Missing classification in {doc}"
+
+    print("  ✅ All documents have required fields")
+
+    return docs
+
+
+def test_department_distribution(docs):
+    """Test that document distribution matches expectations."""
+    print("\nTesting department distribution...")
+
+    dept_counts = {}
+    for doc in docs:
+        dept = doc['department']
+        dept_counts[dept] = dept_counts.get(dept, 0) + 1
+
+    expected = {
+        'engineering': 15,
+        'sales': 10,
+        'hr': 10,
+        'finance': 10,
+        'public': 5,
+    }
+
+    for dept, expected_count in expected.items():
+        actual_count = dept_counts.get(dept, 0)
+        assert actual_count == expected_count, \
+            f"{dept}: expected {expected_count}, got {actual_count}"
+        print(f"  ✅ {dept}: {actual_count} documents")
+
+
+def test_document_structure(docs):
+    """Test document content structure."""
+    print("\nTesting document structure...")
+
+    # Check engineering document
+    eng_docs = [d for d in docs if d['department'] == 'engineering']
+    assert len(eng_docs) > 0, "No engineering documents found"
+
+    sample_eng = eng_docs[0]
+    assert 'Architecture' in sample_eng['title'] or 'Guide' in sample_eng['title'] \
+        or 'Memo' in sample_eng['title'] or 'Specification' in sample_eng['title'], \
+        f"Unexpected title format: {sample_eng['title']}"
+    print(f"  ✅ Engineering doc sample: {sample_eng['title']}")
+
+    # Check sales document
+    sales_docs = [d for d in docs if d['department'] == 'sales']
+    assert len(sales_docs) > 0, "No sales documents found"
+
+    sample_sales = sales_docs[0]
+    print(f"  ✅ Sales doc sample: {sample_sales['title']}")
+
+    # Check public document
+    public_docs = [d for d in docs if d['department'] == 'public']
+    assert len(public_docs) == 5, f"Expected 5 public docs, got {len(public_docs)}"
+
+    for pub_doc in public_docs:
+        assert pub_doc['classification'] == 'public', \
+            f"Public doc has wrong classification: {pub_doc['classification']}"
+
+    print(f"  ✅ All {len(public_docs)} public documents have 'public' classification")
+
+
+def test_cross_department_docs(docs):
+    """Test that cross-department documents exist."""
+    print("\nTesting cross-department documents...")
+
+    # These are the cross-department docs we configured
+    cross_dept_ids = [
+        'engineering-architecture-001',
+        'sales-guide-005',
+        'hr-policy-001',
+    ]
+
+    for doc_id in cross_dept_ids:
+        found = any(d['doc_id'] == doc_id for d in docs)
+        assert found, f"Cross-department document not found: {doc_id}"
+        print(f"  ✅ Found cross-dept doc: {doc_id}")
+
+
+def test_individual_exception_docs(docs):
+    """Test that individual exception documents exist."""
+    print("\nTesting individual exception documents...")
+
+    # These are the individual exception docs we configured
+    exception_ids = [
+        'sales-proposal-001',
+        'hr-policy-002',
+        'engineering-guide-006',
+    ]
+
+    for doc_id in exception_ids:
+        found = any(d['doc_id'] == doc_id for d in docs)
+        assert found, f"Individual exception document not found: {doc_id}"
+        print(f"  ✅ Found exception doc: {doc_id}")
+
+
+def test_doc_id_format(docs):
+    """Test that all doc_ids follow the naming convention."""
+    print("\nTesting doc_id format...")
+
+    import re
+    pattern = re.compile(r'^[a-z]+-[a-z]+-\d{3}$')
+
+    for doc in docs:
+        doc_id = doc['doc_id']
+        assert pattern.match(doc_id), \
+            f"Invalid doc_id format: {doc_id} (expected: dept-category-###)"
+
+    print(f"  ✅ All {len(docs)} doc_ids follow naming convention")
+
+
+def main():
+    """Run all tests."""
+    print("=" * 60)
+    print("Dataset Integration Tests")
+    print("=" * 60)
+
+    try:
+        docs = test_document_loading()
+        test_department_distribution(docs)
+        test_document_structure(docs)
+        test_cross_department_docs(docs)
+        test_individual_exception_docs(docs)
+        test_doc_id_format(docs)
+
+        print("\n" + "=" * 60)
+        print("✅ All integration tests passed!")
+        print("=" * 60)
+        return True
+
+    except AssertionError as e:
+        print(f"\n❌ Test failed: {e}")
+        return False
+    except Exception as e:
+        print(f"\n❌ Error: {e}")
+        import traceback
+        traceback.print_exc()
+        return False
+
+
+if __name__ == "__main__":
+    success = main()
+    sys.exit(0 if success else 1)
diff --git a/agentic-rag-authorization/test_improvements.py b/agentic-rag-authorization/test_improvements.py
new file mode 100644
index 0000000..751e162
--- /dev/null
+++ b/agentic-rag-authorization/test_improvements.py
@@ -0,0 +1,280 @@
+"""
+Test script to verify production improvements.
+
+This tests the new features without requiring running services.
+"""
+
+import json
+import sys
+from io import StringIO
+
+
+def test_structured_logging():
+    """Test that logging produces valid JSON."""
+    print("\n=== Testing Structured Logging ===")
+
+    # Capture logging output
+    from agentic_rag.logging_config import setup_logging, get_logger
+
+    setup_logging(level="INFO")
+    logger = get_logger("test")
+
+    # Capture stdout
+    old_stdout = sys.stdout
+    sys.stdout = captured_output = StringIO()
+
+    # Log with context
+    logger.info(
+        "Test message",
+        extra={
+            "subject_id": "alice",
+            "document_count": 5,
+            "duration_ms": 123.45,
+        },
+    )
+
+    # Restore stdout
+    sys.stdout = old_stdout
+    output = captured_output.getvalue()
+
+    # Parse as JSON
+    try:
+        log_entry = json.loads(output.strip())
+        assert log_entry["level"] == "INFO"
+        assert log_entry["logger"] == "agentic_rag.test"
+        assert log_entry["message"] == "Test message"
+        assert log_entry["subject_id"] == "alice"
+        assert log_entry["document_count"] == 5
+        assert log_entry["duration_ms"] == 123.45
+        print("✅ Structured logging works correctly")
+        print(f"   Sample log: {json.dumps(log_entry, indent=2)[:200]}...")
+        return True
+    except (json.JSONDecodeError, AssertionError, KeyError) as e:
+        print(f"❌ Structured logging failed: {e}")
+        print(f"   Output: {output}")
+        return False
+
+
+def test_connection_pooling():
+    """Test that singletons are created correctly."""
+    print("\n=== Testing Connection Pooling ===")
+
+    try:
+        from agentic_rag.grpc_helpers import (
+            get_spicedb_client,
+            reset_spicedb_client,
+            _spicedb_client,
+        )
+        from agentic_rag.weaviate_client import (
+            get_weaviate_client,
+            reset_weaviate_client,
+            _weaviate_client,
+        )
+
+        # Verify reset functions exist
+        assert callable(reset_spicedb_client)
+        assert callable(reset_weaviate_client)
+
+        print("✅ Connection pooling functions defined correctly")
+        print("   - get_spicedb_client() available")
+        print("   - get_weaviate_client() available")
+        print("   - reset_*_client() functions available")
+        return True
+    except (ImportError, AssertionError) as e:
+        print(f"❌ Connection pooling failed: {e}")
+        return False
+
+
+def test_batch_permissions():
+    """Test that batch permission checker is defined."""
+    print("\n=== Testing Batch Permission Checker ===")
+
+    try:
+        from agentic_rag.authorization_helpers import batch_check_permissions
+
+        # Verify function signature
+        import inspect
+
+        sig = inspect.signature(batch_check_permissions)
+        params = list(sig.parameters.keys())
+
+        assert "client" in params
+        assert "subject_id" in params
+        assert "documents" in params
+
+        print("✅ Batch permission checker defined correctly")
+        print(f"   Function signature: batch_check_permissions{sig}")
+        return True
+    except (ImportError, AssertionError) as e:
+        print(f"❌ Batch permission checker failed: {e}")
+        return False
+
+
+def test_validation():
+    """Test input validation."""
+    print("\n=== Testing Input Validation ===")
+
+    try:
+        from agentic_rag.validation import (
+            validate_query,
+            validate_subject_id,
+            ValidationError,
+        )
+
+        # Test valid inputs
+        query = validate_query("  test query  ")
+        assert query == "test query"
+
+        subject = validate_subject_id("alice_123")
+        assert subject == "alice_123"
+
+        # Test invalid inputs
+        try:
+            validate_query("")
+            print("❌ Empty query should raise ValidationError")
+            return False
+        except ValidationError:
+            pass  # Expected
+
+        try:
+            validate_subject_id("alice@example.com")
+            print("❌ Invalid characters should raise ValidationError")
+            return False
+        except ValidationError:
+            pass  # Expected
+
+        # Test truncation
+        long_query = "x" * 2000
+        truncated = validate_query(long_query)
+        assert len(truncated) == 1000
+
+        print("✅ Input validation works correctly")
+        print("   - Empty query rejected")
+        print("   - Invalid characters rejected")
+        print("   - Long queries truncated")
+        return True
+    except Exception as e:
+        print(f"❌ Input validation failed: {e}")
+        return False
+
+
+def test_error_handling():
+    """Test that error handling is present in nodes."""
+    print("\n=== Testing Error Handling ===")
+
+    try:
+        # Check retrieval node has try-except
+        with open("agentic_rag/nodes/retrieval_node.py", "r") as f:
+            retrieval_code = f.read()
+
+        assert "except Exception as e:" in retrieval_code
+        assert "logger.error" in retrieval_code
+
+        # Check authorization helpers has try-except
+        with open("agentic_rag/authorization_helpers.py", "r") as f:
+            auth_code = f.read()
+
+        assert "except Exception as e:" in auth_code
+        assert "logger.error" in auth_code
+
+        print("✅ Error handling implemented correctly")
+        print("   - Retrieval node has try-except")
+        print("   - Authorization helpers has try-except")
+        print("   - Errors logged with logger.error")
+        return True
+    except Exception as e:
+        print(f"❌ Error handling check failed: {e}")
+        return False
+
+
+def test_config():
+    """Test that config has log_level field."""
+    print("\n=== Testing Configuration ===")
+
+    try:
+        from agentic_rag.config import get_config
+
+        config = get_config()
+
+        assert hasattr(config, "log_level")
+        assert config.log_level == "INFO"  # Default value
+
+        print("✅ Configuration updated correctly")
+        print(f"   - log_level field added (default: {config.log_level})")
+        return True
+    except Exception as e:
+        print(f"❌ Configuration check failed: {e}")
+        return False
+
+
+def test_graph_validation():
+    """Test that graph has validation wrapper."""
+    print("\n=== Testing Graph Validation ===")
+
+    try:
+        from agentic_rag.graph import run_agentic_rag
+        import inspect
+
+        # Verify function signature
+        sig = inspect.signature(run_agentic_rag)
+        params = list(sig.parameters.keys())
+
+        assert "query" in params
+        assert "subject_id" in params
+
+        print("✅ Graph validation wrapper defined correctly")
+        print(f"   Function: run_agentic_rag{sig}")
+        return True
+    except Exception as e:
+        print(f"❌ Graph validation check failed: {e}")
+        return False
+
+
+def main():
+    """Run all tests."""
+    print("\n" + "=" * 60)
+    print("PRODUCTION IMPROVEMENTS VERIFICATION")
+    print("=" * 60)
+
+    tests = [
+        test_structured_logging,
+        test_connection_pooling,
+        test_batch_permissions,
+        test_validation,
+        test_error_handling,
+        test_config,
+        test_graph_validation,
+    ]
+
+    results = []
+    for test in tests:
+        try:
+            result = test()
+            results.append(result)
+        except Exception as e:
+            print(f"\n❌ Test {test.__name__} crashed: {e}")
+            import traceback
+
+            traceback.print_exc()
+            results.append(False)
+
+    # Summary
+    print("\n" + "=" * 60)
+    print("SUMMARY")
+    print("=" * 60)
+
+    passed = sum(results)
+    total = len(results)
+
+    print(f"\nPassed: {passed}/{total}")
+
+    if passed == total:
+        print("\n✅ All production improvements verified successfully!")
+        return 0
+    else:
+        print(f"\n⚠️  {total - passed} tests failed")
+        return 1
+
+
+if __name__ == "__main__":
+    sys.exit(main())
diff --git a/agentic-rag-authorization/tests/__init__.py b/agentic-rag-authorization/tests/__init__.py
new file mode 100644
index 0000000..22bbaa8
--- /dev/null
+++ b/agentic-rag-authorization/tests/__init__.py
@@ -0,0 +1 @@
+"""Tests for agentic RAG system."""
diff --git a/agentic-rag-authorization/tests/conftest.py b/agentic-rag-authorization/tests/conftest.py
new file mode 100644
index 0000000..1b1c084
--- /dev/null
+++ b/agentic-rag-authorization/tests/conftest.py
@@ -0,0 +1,37 @@
+"""Test fixtures for agentic RAG tests."""
+
+import pytest
+import weaviate
+from agentic_rag.grpc_helpers import create_insecure_spicedb_client
+
+
+@pytest.fixture
+def weaviate_client():
+    """Create Weaviate client for tests."""
+    client = weaviate.connect_to_local()
+    yield client
+    client.close()
+
+
+@pytest.fixture
+def spicedb_client():
+    """Create SpiceDB client for tests."""
+    return create_insecure_spicedb_client("localhost:50051", "devtoken")
+
+
+@pytest.fixture
+def sample_state():
+    """Create sample state for testing."""
+    return {
+        "query": "Test query",
+        "subject_id": "alice",
+        "max_attempts": 3,
+        "retrieval_attempt": 0,
+        "messages": [],
+        "reasoning": [],
+        "retrieved_documents": [],
+        "authorized_documents": [],
+        "denied_count": 0,
+        "authorization_passed": False,
+        "answer": "",
+    }
diff --git a/agentic-rag-authorization/tests/test_basic_flow.py b/agentic-rag-authorization/tests/test_basic_flow.py
new file mode 100644
index 0000000..8a7aea8
--- /dev/null
+++ b/agentic-rag-authorization/tests/test_basic_flow.py
@@ -0,0 +1,86 @@
+"""Basic integration tests for agentic RAG."""
+
+import pytest
+from agentic_rag.graph import build_agentic_rag_graph
+
+
+@pytest.mark.asyncio
+async def test_authorized_access():
+    """Test that authorized user can access documents."""
+    graph = build_agentic_rag_graph()
+
+    result = await graph.ainvoke(
+        {
+            "query": "What are our engineering best practices?",
+            "subject_id": "alice",
+            "max_attempts": 3,
+            "retrieval_attempt": 0,
+            "messages": [],
+            "reasoning": [],
+            "retrieved_documents": [],
+            "authorized_documents": [],
+            "denied_count": 0,
+            "authorization_passed": False,
+            "answer": "",
+        }
+    )
+
+    # Alice should have access to engineering documents
+    assert len(result["authorized_documents"]) > 0
+    assert result["authorization_passed"] is True
+    assert result["answer"] != ""
+
+
+@pytest.mark.asyncio
+async def test_denied_access():
+    """Test that unauthorized user is denied access."""
+    graph = build_agentic_rag_graph()
+
+    result = await graph.ainvoke(
+        {
+            "query": "What are the HR policies and employee guidelines?",
+            "subject_id": "bob",
+            "max_attempts": 3,
+            "retrieval_attempt": 0,
+            "messages": [],
+            "reasoning": [],
+            "retrieved_documents": [],
+            "authorized_documents": [],
+            "denied_count": 0,
+            "authorization_passed": False,
+            "answer": "",
+        }
+    )
+
+    # Bob (sales) should not have access to HR documents
+    assert len(result["authorized_documents"]) == 0
+    assert result["denied_count"] > 0
+    assert result["answer"] != ""
+    # Answer should explain the access denial
+    assert "access" in result["answer"].lower() or "permission" in result["answer"].lower()
+
+
+@pytest.mark.asyncio
+async def test_retrieval_attempts():
+    """Test that system respects max retrieval attempts."""
+    graph = build_agentic_rag_graph()
+
+    result = await graph.ainvoke(
+        {
+            "query": "Query that will fail authorization",
+            "subject_id": "unauthorized_user",
+            "max_attempts": 2,
+            "retrieval_attempt": 0,
+            "messages": [],
+            "reasoning": [],
+            "retrieved_documents": [],
+            "authorized_documents": [],
+            "denied_count": 0,
+            "authorization_passed": False,
+            "answer": "",
+        }
+    )
+
+    # Should not exceed max attempts
+    assert result["retrieval_attempt"] <= 2
+    assert result["answer"] != ""
diff --git a/agentic-rag-authorization/ui/index.html b/agentic-rag-authorization/ui/index.html
new file mode 100644
index 0000000..6098623
--- /dev/null
+++ b/agentic-rag-authorization/ui/index.html
@@ -0,0 +1,544 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Agentic RAG Authorization Demo</title>
+    <style>
+        * {
+            margin: 0;
+            padding: 0;
+            box-sizing: border-box;
+        }
+
+        body {
+            font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, 'Helvetica Neue', Arial, sans-serif;
+            background: #f9fafb;
+            color: #1f2937;
+            line-height: 1.6;
+        }
+
+        .container {
+            max-width: 1200px;
+            margin: 0 auto;
+            padding: 20px;
+        }
+
+        header {
+            text-align: center;
+            padding: 40px 0 20px;
+        }
+
+        header h1 {
+            font-size: 2.5rem;
+            margin-bottom: 10px;
+            color: #111827;
+        }
+
+        header p {
+            font-size: 1.1rem;
+            color: #6b7280;
+        }
+
+        .card {
+            background: white;
+            border-radius: 8px;
+            padding: 24px;
+            margin: 20px 0;
+            box-shadow: 0 1px 3px rgba(0, 0, 0, 0.1);
+        }
+
+        .card h2 {
+            font-size: 1.5rem;
+            margin-bottom: 16px;
+            color: #111827;
+        }
+
+        .form-group {
+            margin-bottom: 16px;
+        }
+
+        label {
+            display: block;
+            margin-bottom: 8px;
+            font-weight: 500;
+            color: #374151;
+        }
+
+        select, textarea {
+            width: 100%;
+            padding: 10px;
+            border: 1px solid #d1d5db;
+            border-radius: 6px;
+            font-size: 1rem;
+            font-family: inherit;
+        }
+
+        select:focus, textarea:focus {
+            outline: none;
+            border-color: #3b82f6;
+            box-shadow: 0 0 0 3px rgba(59, 130, 246, 0.1);
+        }
+
+        textarea {
+            resize: vertical;
+            min-height: 100px;
+        }
+
+        .user-info {
+            display: inline-block;
+            margin-left: 16px;
+            padding: 6px 12px;
+            background: #f3f4f6;
+            border-radius: 6px;
+            font-size: 0.9rem;
+            color: #4b5563;
+        }
+
+        .button-group {
+            display: flex;
+            gap: 12px;
+            margin-top: 16px;
+        }
+
+        button {
+            padding: 10px 20px;
+            border: none;
+            border-radius: 6px;
+            font-size: 1rem;
+            font-weight: 500;
+            cursor: pointer;
+            transition: all 0.2s;
+        }
+
+        button:disabled {
+            opacity: 0.5;
+            cursor: not-allowed;
+        }
+
+        .btn-primary {
+            background: #3b82f6;
+            color: white;
+        }
+
+        .btn-primary:hover:not(:disabled) {
+            background: #2563eb;
+        }
+
+        .btn-secondary {
+            background: #f3f4f6;
+            color: #374151;
+            border: 1px solid #d1d5db;
+        }
+
+        .btn-secondary:hover:not(:disabled) {
+            background: #e5e7eb;
+        }
+
+        .stats {
+            display: flex;
+            gap: 20px;
+            padding: 16px;
+            background: #f9fafb;
+            border-radius: 6px;
+            margin-bottom: 20px;
+            flex-wrap: wrap;
+        }
+
+        .stat-item {
+            font-size: 0.95rem;
+        }
+
+        .stat-item strong {
+            color: #111827;
+        }
+
+        .doc-section {
+            margin-top: 24px;
+        }
+
+        .doc-section h3 {
+            font-size: 1.2rem;
+            margin-bottom: 12px;
+            color: #111827;
+        }
+
+        .doc-card {
+            padding: 16px;
+            margin-bottom: 12px;
+            border-radius: 6px;
+            border: 1px solid #e5e7eb;
+        }
+
+        .doc-card.authorized {
+            background: #f0fdf4;
+            border-color: #86efac;
+        }
+
+        .doc-card.denied {
+            background: #fef2f2;
+            border-color: #fecaca;
+        }
+
+        .doc-card-header {
+            display: flex;
+            align-items: center;
+            gap: 8px;
+            margin-bottom: 8px;
+        }
+
+        .doc-icon {
+            font-size: 1.2rem;
+        }
+
+        .doc-title {
+            font-weight: 600;
+            color: #111827;
+            flex: 1;
+        }
+
+        .doc-id {
+            font-size: 0.85rem;
+            color: #6b7280;
+            font-family: 'Courier New', monospace;
+        }
+
+        .doc-content {
+            color: #4b5563;
+            font-size: 0.95rem;
+            margin-top: 8px;
+        }
+
+        .doc-reason {
+            color: #991b1b;
+            font-size: 0.9rem;
+            font-style: italic;
+            margin-top: 4px;
+        }
+
+        .answer-section {
+            margin-top: 24px;
+        }
+
+        .answer-section h3 {
+            font-size: 1.2rem;
+            margin-bottom: 12px;
+            color: #111827;
+        }
+
+        .answer-content {
+            padding: 20px;
+            background: #f9fafb;
+            border-left: 4px solid #3b82f6;
+            border-radius: 6px;
+            color: #374151;
+            line-height: 1.7;
+        }
+
+        .error-card {
+            background: #fef2f2;
+            border: 1px solid #fecaca;
+        }
+
+        .error-card h2 {
+            color: #991b1b;
+        }
+
+        .error-message {
+            color: #991b1b;
+            padding: 12px;
+            background: white;
+            border-radius: 6px;
+            margin-top: 12px;
+        }
+
+        .loading {
+            display: inline-block;
+            width: 16px;
+            height: 16px;
+            border: 2px solid #f3f4f6;
+            border-top-color: #3b82f6;
+            border-radius: 50%;
+            animation: spin 0.6s linear infinite;
+            margin-left: 8px;
+        }
+
+        @keyframes spin {
+            to { transform: rotate(360deg); }
+        }
+
+        .hidden {
+            display: none;
+        }
+
+        .empty-state {
+            text-align: center;
+            padding: 40px;
+            color: #6b7280;
+        }
+    </style>
+</head>
+<body>
+    <div class="container">
+        <header>
+            <h1>🔐 Agentic RAG Authorization Demo</h1>
+            <p>Demonstrating fine-grained authorization with SpiceDB</p>
+        </header>
+
+        <div class="card">
+            <h2>User Selection</h2>
+            <div class="form-group">
+                <label for="userSelect">Select User:</label>
+                <select id="userSelect">
+                    <option value="">Loading users...</option>
+                </select>
+                <span id="userDepartment" class="user-info">Department: -</span>
+            </div>
+        </div>
+
+        <div class="card">
+            <h2>Query</h2>
+            <div class="form-group">
+                <label for="queryInput">Enter your query:</label>
+                <textarea id="queryInput" placeholder="What are our microservices architecture patterns?"></textarea>
+            </div>
+            <div class="button-group">
+                <button id="submitButton" class="btn-primary">Submit Query</button>
+                <select id="exampleQueries" class="btn-secondary">
+                    <option value="">-- Try an example --</option>
+                </select>
+            </div>
+        </div>
+
+        <div id="resultsCard" class="card hidden">
+            <h2>Results</h2>
+            <div id="stats" class="stats"></div>
+
+            <div id="authorizedSection" class="doc-section"></div>
+            <div id="deniedSection" class="doc-section"></div>
+            <div id="answerSection" class="answer-section"></div>
+        </div>
+
+        <div id="errorCard" class="card error-card hidden">
+            <h2>Error</h2>
+            <div id="errorMessage" class="error-message"></div>
+        </div>
+    </div>
+
+    <script>
+        const API_BASE = '/api';
+
+        // Example queries mapped to users
+        const EXAMPLE_QUERIES = [
+            { query: "What are our microservices architecture patterns?", user: "alice" },
+            { query: "What sales proposals do we have?", user: "bob" },
+            { query: "What HR policies do we have?", user: "hr_manager" },
+            { query: "What are the quarterly financial reports?", user: "finance_manager" },
+            { query: "What are the company handbook guidelines?", user: "bob" },
+            { query: "Show me sales proposals", user: "alice" },
+        ];
+
+        let users = [];
+
+        // Load users on page load
+        async function loadUsers() {
+            try {
+                const response = await fetch(`${API_BASE}/users`);
+                const data = await response.json();
+
+                if (data.success) {
+                    users = data.data.users;
+                    const select = document.getElementById('userSelect');
+                    select.innerHTML = '';
+
+                    users.forEach(user => {
+                        const option = document.createElement('option');
+                        option.value = user.id;
+                        option.textContent = `${user.name} (${user.department})`;
+                        option.dataset.department = user.department;
+                        select.appendChild(option);
+                    });
+
+                    updateDepartment();
+                }
+            } catch (error) {
+                console.error('Failed to load users:', error);
+                document.getElementById('userSelect').innerHTML = '<option value="">Error loading users</option>';
+            }
+        }
+
+        // Update department display
+        function updateDepartment() {
+            const select = document.getElementById('userSelect');
+            const option = select.options[select.selectedIndex];
+            const department = option.dataset.department || '-';
+            document.getElementById('userDepartment').innerHTML = `Department: <strong>${department}</strong>`;
+        }
+
+        // Submit query
+        async function submitQuery() {
+            const query = document.getElementById('queryInput').value.trim();
+            const subject_id = document.getElementById('userSelect').value;
+
+            if (!query) {
+                alert('Please enter a query');
+                return;
+            }
+
+            if (!subject_id) {
+                alert('Please select a user');
+                return;
+            }
+
+            // Hide previous results/errors
+            document.getElementById('resultsCard').classList.add('hidden');
+            document.getElementById('errorCard').classList.add('hidden');
+
+            // Show loading state
+            const submitButton = document.getElementById('submitButton');
+            submitButton.disabled = true;
+            submitButton.innerHTML = 'Processing<span class="loading"></span>';
+
+            try {
+                const response = await fetch(`${API_BASE}/query`, {
+                    method: 'POST',
+                    headers: { 'Content-Type': 'application/json' },
+                    body: JSON.stringify({ query, subject_id, max_attempts: 1 })
+                });
+
+                const result = await response.json();
+
+                if (result.success) {
+                    displayResults(result.data);
+                } else {
+                    displayError(result.error.message || 'Unknown error occurred');
+                }
+            } catch (error) {
+                displayError(error.message);
+            } finally {
+                submitButton.disabled = false;
+                submitButton.textContent = 'Submit Query';
+            }
+        }
+
+        // Display results
+        function displayResults(data) {
+            document.getElementById('errorCard').classList.add('hidden');
+            document.getElementById('resultsCard').classList.remove('hidden');
+
+            // Stats
+            const statsHTML = `
+                <div class="stat-item">📊 <strong>Retrieved:</strong> ${data.stats.retrieved_count}</div>
+                <div class="stat-item">✅ <strong>Authorized:</strong> ${data.stats.authorized_count}</div>
+                <div class="stat-item">❌ <strong>Denied:</strong> ${data.stats.denied_count}</div>
+                <div class="stat-item">🔄 <strong>Attempts:</strong> ${data.stats.retrieval_attempts}</div>
+                <div class="stat-item">⏱️ <strong>Time:</strong> ${data.stats.execution_time_ms}ms</div>
+            `;
+            document.getElementById('stats').innerHTML = statsHTML;
+
+            // Authorized documents
+            const authorizedSection = document.getElementById('authorizedSection');
+            if (data.authorized_documents.length > 0) {
+                const authDocsHTML = data.authorized_documents.map(doc => `
+                    <div class="doc-card authorized">
+                        <div class="doc-card-header">
+                            <span class="doc-icon">✅</span>
+                            <span class="doc-title">${escapeHtml(doc.title)}</span>
+                            <span class="doc-id">${escapeHtml(doc.doc_id)}</span>
+                        </div>
+                        <div class="doc-content">${escapeHtml(doc.content_preview)}</div>
+                    </div>
+                `).join('');
+                authorizedSection.innerHTML = `
+                    <h3>Authorized Documents (${data.authorized_documents.length})</h3>
+                    ${authDocsHTML}
+                `;
+            } else {
+                authorizedSection.innerHTML = `
+                    <h3>Authorized Documents (0)</h3>
+                    <div class="empty-state">No authorized documents found</div>
+                `;
+            }
+
+            // Denied documents
+            const deniedSection = document.getElementById('deniedSection');
+            if (data.denied_documents.length > 0) {
+                const deniedDocsHTML = data.denied_documents.map(doc => `
+                    <div class="doc-card denied">
+                        <div class="doc-card-header">
+                            <span class="doc-icon">❌</span>
+                            <span class="doc-title">${escapeHtml(doc.title)}</span>
+                            <span class="doc-id">${escapeHtml(doc.doc_id)}</span>
+                        </div>
+                        <div class="doc-reason">🚫 ${escapeHtml(doc.reason)}</div>
+                    </div>
+                `).join('');
+                deniedSection.innerHTML = `
+                    <h3>Denied Documents (${data.denied_documents.length})</h3>
+                    ${deniedDocsHTML}
+                `;
+            } else {
+                deniedSection.innerHTML = `
+                    <h3>Denied Documents (0)</h3>
+                    <div class="empty-state">No documents were denied</div>
+                `;
+            }
+
+            // Answer
+            const answerSection = document.getElementById('answerSection');
+            answerSection.innerHTML = `
+                <h3>💬 Answer</h3>
+                <div class="answer-content">${escapeHtml(data.answer)}</div>
+            `;
+        }
+
+        // Display error
+        function displayError(message) {
+            document.getElementById('resultsCard').classList.add('hidden');
+            document.getElementById('errorCard').classList.remove('hidden');
+            document.getElementById('errorMessage').textContent = message;
+        }
+
+        // Escape HTML to prevent XSS
+        function escapeHtml(text) {
+            const div = document.createElement('div');
+            div.textContent = text;
+            return div.innerHTML;
+        }
+
+        // Event listeners
+        document.getElementById('userSelect').addEventListener('change', updateDepartment);
+
+        document.getElementById('submitButton').addEventListener('click', submitQuery);
+
+        document.getElementById('queryInput').addEventListener('keydown', (e) => {
+            if (e.key === 'Enter' && e.ctrlKey) {
+                submitQuery();
+            }
+        });
+
+        document.getElementById('exampleQueries').addEventListener('change', (e) => {
+            const index = e.target.selectedIndex - 1;
+            if (index >= 0) {
+                const example = EXAMPLE_QUERIES[index];
+                document.getElementById('queryInput').value = example.query;
+                document.getElementById('userSelect').value = example.user;
+                updateDepartment();
+                e.target.selectedIndex = 0; // Reset dropdown
+            }
+        });
+
+        // Initialize
+        loadUsers();
+
+        // Populate example queries dropdown
+        const exampleSelect = document.getElementById('exampleQueries');
+        EXAMPLE_QUERIES.forEach((ex, index) => {
+            const option = document.createElement('option');
+            const queryPreview = ex.query.length > 50 ? ex.query.substring(0, 50) + '...' : ex.query;
+            option.textContent = `${queryPreview} (${ex.user})`;
+            exampleSelect.appendChild(option);
+        });
+    </script>
+</body>
+</html>