Operations

Settings

Tenant configuration. Read-only preview in Phase 1.

Roles

6 roles seeded

  • Owner

    owner

    Full administrative authority. Reserved for Mr. Pinder and any explicit delegate.

  • Office Manager

    office_manager

    Operates the firm. Manages users, automations, commissions, and compliance.

  • Agent

    agent

    Producing licensed agent. Scoped to assigned clients and own pipeline.

  • Support Staff

    support_staff

    Non-licensed support. Can assist with scheduling, documents, and intake but cannot bind or recommend.

  • Read Only

    read_only

    Read-only access for auditors, accountants, or legal review.

  • Service Account

    service_account

    Non-human account for backend jobs and integrations. Never used in interactive sessions.

Permissions

43 atomic permissions

  • platform.view
  • platform.admin
  • users.manage
  • roles.manage
  • audit.view
  • settings.manage
  • crm.view
  • crm.manage
  • crm.contact.create
  • crm.contact.update
  • crm.contact.delete
  • crm.household.manage
  • crm.notes.manage
  • crm.tasks.manage
  • crm.sensitive.view_masked
  • crm.sensitive.reveal
  • crm.sensitive.update
  • documents.view
  • documents.manage
  • events.view
  • events.manage
  • calendar.view
  • calendar.manage
  • communications.view
  • communications.manage
  • ai.use
  • ai.admin
  • commissions.view
  • commissions.manage
  • compliance.view
  • compliance.manage
  • platform.super_admin
  • platform.security.view
  • platform.security.manage
  • platform.tenants.view
  • platform.tenants.manage
  • staff.view
  • staff.manage
  • staff.invite
  • staff.disable
  • roles.assign
  • feature_flags.view
  • feature_flags.manage

Editing roles and permissions arrives in Phase 2 with Supabase Auth.