idp.global/app
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
cc9d56ff4bf5a0371bb4d5f8fbbc6022c7fd94b6
app/stories/organization-owner/ORG-003-role-assignment.md
T
jkunz 014fb3080a add stories
2025-11-30 15:01:28 +00:00

1.0 KiB
Raw Blame History

Assign Roles to Members

ID: ORG-003 Priority: High Status: Planned

User Story

As an organization owner, I want to assign different roles to team members so that I can control what each person can access and do within the organization.

Acceptance Criteria

  • Owner can create custom roles for the organization
  • Default roles: Owner, Admin, Member, Viewer
  • Each role has configurable permissions
  • Owner can assign/change roles for any member
  • Role changes take effect immediately
  • Members can view their own role and permissions
  • Audit log for role changes
  • At least one Owner must exist at all times

Technical Notes

  • RoleManager exists with basic role infrastructure
  • getRolesAndOrganizationsForUserId endpoint available
  • Need to expand Role model with permissions array
  • Consider permission inheritance (Admin inherits Member permissions)
  • JWT claims should include role for authorization

Related TODOs

  • Partial implementation exists in RoleManager
Reference in New Issue View Git Blame Copy Permalink