Roles & Privileges¶
Navigation: Administrator → Roles
The Roles screen defines what access each user group has within the platform. Each user is assigned one role, and that role determines which screens they can view or edit, and whether they have access to specific data subsets via granular privileges.
Role Management¶
| Action | Description |
|---|---|
| New | Create a new role |
| Edit | Modify role name, description, and privilege assignments |
| Delete | Remove a role (only possible if no users are assigned to it) |
Columns¶
| Column | Description |
|---|---|
| Role Name | Name of the role (e.g. Planner, Procurement Manager, Read Only) |
| Role Description | Description of the role's intended function |
| Number of Privileges | Count of individual privileges assigned to this role |
| Has Granular Privileges | Whether this role has row-level data access restrictions enabled |
Privilege Model¶
Each privilege is defined by two dimensions:
| Dimension | Values |
|---|---|
| Privilege Type | The module or feature (e.g. Purchase Orders, Inventory Planning, Users, Settings) |
| Access Type | View (read-only) or Edit (read + write) |
A role can have View access to some modules and Edit access to others, or no access at all to certain modules.
Granular Privileges¶
Granular privileges restrict which data rows a role can see, down to the SKU level. This is primarily used for supplier portal access - a supplier-facing role can be configured to see only the purchase orders associated with their own supplier number.
Configuring Granular Privileges¶
- Open the role for editing
- Enable Granular Privileges
- For each relevant module (e.g. Purchase Orders), add filter rules:
- Field: e.g. Supplier Number
- Operator: equals
- Value: e.g.
SUP-001 - Save the role
Users assigned to this role will only see rows matching the configured filters - all other rows are hidden at the data level, not just the UI level.
Supplier Portal Setup
See the Supplier Portal Access guide for a step-by-step walkthrough of configuring a role that restricts a supplier to only their own purchase orders.