7. System Administration
Role-based Access Control (RBAC)
The application defines access levels using hierarchical configurations.
- VIEWER: Limited to Read-Only (
GET) actions. - USER: Allowed Standard interactions (
POST,PATCHfor assigned assets). - ADMIN: Omni-access configuration.
Approving Elevation Requests
- Navigate
/admin/users; only accessible to existing ADMIN roles. - Review the data table.
- Toggle the role selector from
USERtoADMIN. - Outcome: Privileges update synchronously; user may need to re-authenticate for backend JWT tokens to inherit new metadata.