A principal you can preview the running app AS — derived from the contract, never hardcoded.
the role token passed to the preview deploy's /preview/login?role=… (or "anonymous").
the scopes this role implies in the cross-cut (here, just the role itself; the runtime maps role→scopes).
A principal you can preview the running app AS — derived from the contract, never hardcoded.