GraphEvo · AI Agent Studio

Ingest events

Upload a JSON Lines file. In Simulation mode the prepared payload is shown on screen but not sent. In Live mode the call is POSTed to IndyKite using the App Agent credential configured for this deployment.

Drop a .jsonl file here or click to browse · max 10 MB

Recent ingestions

Last 20 ingestions you've run.

No ingestions yet.

Import users from Entra ID

Reads all enabled users from your Entra tenant and writes them to the Identity Knowledge Graph as User and Person nodes (with manager relationships) via the Capture API. Admin only.

Import workflows

Reads the workflow master list and writes Workflow nodes plus their governance links (owned-by department, authored-by and approved-by person) to the Identity Knowledge Graph via the Capture API. Run the user import first so departments and people exist. Admin only.

IK Project

Read-only summary of the Context IQ configuration loaded from Key Vault. The credentials themselves stay server-side.

Loading: …

What I am to IK

Your identity, department, and the AI agent workflows you can run — read live from the IndyKite graph and reconciled against company policy.

Running query…

Raw response

Query Runner

Execute any knowledge query by its IK ID. Useful while iterating on policies/queries. Optionally pass input parameters (one per line, name=value).

Knowledge query ID Input params (optional)

Result will appear here.

Policies & Knowledge Queries

Lists what currently exists in IK (the single source of truth). Click an ID to copy it into the Query Runner above.

Authorization policies

Click Refresh to load.

Knowledge queries

Click Refresh to load.

Create authorization policy

Paste the inner policy JSON (the object — not pre-stringified). The server wraps and stringifies it. Author group only.

Name Policy JSON (inner object)

Create knowledge query

Paste the inner query JSON. Provide the policy_id it references. The server wraps and stringifies it. Author group only.

Name Policy ID Query JSON (inner object)

Mode

Agent activity

What the agent is doing — files read, tools called, LLM calls, sources cited.

Configured agents

Each user is routed to an agent based on their department.

Inter-agent delegation

Phase 2: when an agent needs information owned by another (e.g. Maintenance asks Purchasing if a part has been ordered), delegation will use OAuth 2.0 Token Exchange (RFC 8693). Each hop adds an act claim to the JWT, preserving the audit chain back to the original user.

Security Audit

Look up any subject and see their master-data chain and what they can do. Admin only. Helps verify the data is in good shape before a demo.

Lookup Value

Raw response

AuthZEN decision runner

Ask IndyKite's AuthZEN engine "can this subject perform this action on this resource?" — a live allow/deny decision evaluated against the KBAC policies. Admin only. This is the same CAN_TRIGGER gate agent execution will use.

Check Subject Resource

Raw response

Sign in

Ingest events

Recent ingestions

IK Project

What I am to IK

Query Runner

Policies & Knowledge Queries

Agent activity

Configured agents

Security Audit

AuthZEN decision runner