Read-only foundation
Source health
This screen verifies whether credentials are present and documents source authority. It does not write to Stripe, QBO, Plaid, Drive, or Gravity production.
Stripe
Operational advertiser billing/payment objects
Configured
customers, invoices, charges, payment intents, balance transactions, credit notes, customer balance transactions
Cadence: Daily billing snapshot before close readiness
scheduled
Freshness SLA: 24h
Deploy check: STRIPE_FINANCE_READ_KEY present in deployed runtime
QuickBooks sandbox
Sandbox accounting, customers, vendors, and chart of accounts
Configured
Sandbox GL/accounting evidence until production QBO is re-authorized
Cadence: Daily sandbox accounting snapshot before close readiness
scheduled
Freshness SLA: 24h
Deploy check: QUICKBOOKS_FINANCE_SANDBOX_* OAuth values present in deployed runtime
Google Drive
Publisher agreement folder inventory and text extraction
Configured
folder_inventory, publisher_contract_candidate, contract_text raw records before human approval
Cadence: Nightly agreement inventory and text extraction
scheduled
Freshness SLA: 48h
Deploy check: GOOGLE_DRIVE_FINANCE_SERVICE_ACCOUNT_JSON present in deployed runtime
Plaid sandbox
Bank transaction integration development lane
Missing
sandbox transaction connector until production is approved
Cadence: Sandbox proof path on demand until production approval
scheduled
Freshness SLA: 7d
Deploy check: PLAID_CLIENT_ID, PLAID_SANDBOX_SECRET, and PLAID_SANDBOX_ACCESS_TOKEN present in deployed runtime
Rho CSV
Manual cash transaction CSV fallback import
Configured
settlement-date bank transactions from CSV until Plaid production is approved
Cadence: Operator CSV import at close-prep time
manual
Freshness SLA: 7d
Deploy check: SUPABASE_FINANCE_SECRET_KEY present; operator provides CSV source file
Finance Supabase
Dedicated Finance OS raw records, entity review, audit events, exceptions, and close state
Configured
source_sync_runs, raw_source_records, finance_entities, finance_audit_events
Cadence: Always-on Finance OS state store
scheduled
Freshness SLA: n/a
Deploy check: NEXT_PUBLIC_SUPABASE_URL and SUPABASE_FINANCE_SECRET_KEY present in deployed runtime
Gravity prod database
Canonical entities, credits, billing state, and event-level spend joins
Configured
publishers, billing_adjustments, advertiser_billing
Cadence: Daily read-only Gravity snapshots before close readiness
scheduled
Freshness SLA: 24h
Deploy check: SUPABASE_PROD_DB_PASSWORD present in deployed runtime
Redshift
Historical event-level spend verification
Configured
SUM(ad_impressions.price), impressions, clicks at scale
Cadence: Daily partitioned spend evidence snapshots
scheduled
Freshness SLA: 24h
Deploy check: AWS_REDSHIFT_READONLY_ACCESS_KEY_ID and AWS_REDSHIFT_READONLY_SECRET_ACCESS_KEY present in deployed runtime
Source authority matrix
Rules that prevent Finance OS from becoming another inconsistent spreadsheet.
| Fact | Primary source | Rule |
|---|---|---|
| Publisher ad spend | Gravity/Redshift event data | Use SUM(ad_impressions.price); never use text_ad.spend |
| Advertiser billing | Stripe | Operational invoices, charges, payment intents, and balance transactions |
| Accounting/GL | QuickBooks | Deposits, purchases, bills, journals, accounts, vendors, customers |
| Cash movement | Rho CSV now, Plaid production later | Settlement-date bank transactions; CSV remains fallback |
| Contracts | Google Drive Publisher Agreements | Machine extraction drafts terms; human approval required for close |
| Credits | billing_adjustments + advertiser_billing | Ledger grants plus operational balance/cache |
| Finance OS state | Finance Supabase | Dedicated project for raw source records, review state, audit events, and close periods |
| Historical benchmark | Manual XLSX | Backtest target only, not future source of truth |