Authorization Groups
Overview
Section titled “Overview”Authorization Groups define sets of permissions that can be assigned to users. They allow administrators to manage access control at scale by grouping related permissions and assigning the group to multiple users. Tenant Admins manage tenant-wide groups; Account Admins manage groups scoped to their account.
Access & Permissions
Section titled “Access & Permissions”| Role | Access Level |
|---|---|
| Tenant Admin | Full access — tenant-wide permission groups |
| Account Admin | Limited access — account-scoped permission groups only |
| Super User | Full access across all tenants |
Visibility Conditions
Section titled “Visibility Conditions”Always visible to authorized roles.
Key Features
Section titled “Key Features”- Group Creation — Define a named permission group with a description and select individual permissions to include.
- Tenant vs. Account Scope — Tenant-level groups apply across all accounts; account-level groups apply only within a specific account.
- Permission Assignment — Fine-grained permission toggles covering modules such as inventory, finance, reporting, and settings.
- User Assignment — Assign one or more authorization groups to individual users to grant bundled permissions.
- Group Auditing — View which users belong to each group and when the group was last modified.
:::tip TODO
- Add a guide on creating a custom authorization group from scratch.
- Provide a full reference table of available permissions per module.
- Document the precedence rules when a user belongs to multiple groups with conflicting permissions. :::