BizCoRaBizCoRaDocumentation center
/
Back to site FRENDE

Manage a user's permissions

Admin

Grant or revoke specific rights for a person, on top of their role.

Presentation

Each role (cashier, manager, administrator) already grants a set of default rights. Fine-grained permissions let you ADDITIONALLY tailor those rights PERSON BY PERSON: grant a right the role lacks, or revoke a right the role has.

Examples: allow one specific manager to edit or delete products; allow a trusted cashier to issue refunds; or conversely remove refunds from a cashier.

Changes affect ONLY the chosen person, never other users with the same role. The server remains the sole authority on access: even if an option appears, an unauthorized action is refused server-side.

Access

Administrator dashboard > "Manage users" > tap a user, then the shield icon "Manage permissions" at the top right. This icon only appears for administrators.

Interface description

  • Matrix by module: Rights are grouped by module (Products, Sales, Stock, Customers, Invoices, Reports, etc.). Each row is a specific action (View, Create, Edit, Delete, Refund...).
  • Checkbox: Tick to grant the right, untick to remove it. A label shows whether the right is "included by default in the role".
  • Save: Applies the changes. The server automatically computes additions and removals relative to the role.

Step-by-step procedure

  1. Action: Open "Manage users" and tap the person concerned. Result: Their profile appears.
  2. Action: Tap the shield icon "Manage permissions" at the top right. Result: The permission matrix appears, pre-filled with the person current rights.
  3. Action: Tick the rights to grant, untick those to remove, then tap Save. Result: A message confirms the save. Check: The person will have the new rights on their next action (or after signing in again). Screens follow their rights: a granted module appears automatically in their navigation (dashboard, or side drawer for a cashier), and a revoked module disappears from it.

Examples

[simple] Let a manager edit products: Open the manager profile > Manage permissions > Products module > tick 'Edit' (and 'Delete' if needed) > Save.

[intermediate] Remove refunds from a cashier: Open the cashier profile > Manage permissions > Sales module > untick 'Refund' > Save. That cashier can no longer issue refunds.

Edge cases

Last administrator: you cannot remove permission or user management from the last active administrator (it would lock the company out).

Managing others' permissions stays reserved to administrators: it is not a right that can be freely delegated (security).

Error messages

Not allowed: at least one administrator must keep managing permissions and users.
Cause: You are trying to remove a critical right from the last administrator. Solution: Keep that right, or first appoint another administrator.
Invalid permission selection.
Cause: The submitted selection contains an unknown right (rare). Solution: Reopen the matrix and retry; if it persists, contact support.

Tips

  • Start from the role as a base, then adjust only the exceptions: it is easier to maintain.
  • The server always enforces rights: the interface only reflects what is allowed.