Role-Based Access Control (RBAC)

AutoCom includes a comprehensive Role-Based Access Control system that provides fine-grained authorization for multi-tenant environments.

Key Features

• Multi-Tenant Support: Users can have different roles in different organizations
• Granular Permissions: 68 permissions across 12 functional groups
• Default Roles: 5 pre-configured roles with graduated access levels
• Custom Roles: Create tenant-specific roles with custom permission sets
• Activity Logging: Full audit trail of all authorization-related events

How It Works

User ─────┬──── Tenant A ──── Role: Owner ──── 68 permissions
          │
          └──── Tenant B ──── Role: Agent ──── 14 permissions

A single user can belong to multiple tenants, each with a different role. Permissions are resolved at the tenant level, ensuring complete isolation.

Quick Start

1. Register a Tenant

When you register a new tenant, an owner user is automatically created:

POST /api/v1/tenants
Content-Type: application/json

{
  "company_name": "My Store",
  "domain": "my-store",
  "admin_name": "John Doe",
  "admin_email": "john@mystore.com",
  "admin_password": "securepassword123",
  "admin_password_confirmation": "securepassword123"
}

2. Invite Team Members

Invite users with specific roles:

POST /api/v1/team/invite
Authorization: Bearer {token}
X-Tenant: my-store

{
  "email": "jane@mystore.com",
  "role_id": 2
}

3. Check Permissions

All API endpoints are protected by permission middleware. Users can only access endpoints they have permissions for.

Permission Groups

Permissions are organized into 12 functional groups:

Group	Description	Permission Count
Dashboard	Dashboard access and analytics viewing	2
Orders	Order management and processing	9
Customers	Customer data management	7
Products	Product catalog management	7
Shipping	Shipment and carrier management	7
Communication	Messaging across channels	6
Analytics	Reports and business intelligence	5
AI Operations	AI configuration and monitoring	5
Integrations	Module and webhook management	5
Team	User and role management	5
Settings	Store and account settings	5
Administration	System-level operations	5

Default Roles

AutoCom ships with 5 default roles:

Role	Permissions	Use Case
Owner	68 (all)	Business owner with full access
Admin	66	Administrator managing day-to-day operations
Manager	39	Team lead with operational control
Agent	14	Support staff handling orders and customers
Viewer	8	Read-only access for stakeholders

See Roles Reference for detailed permission breakdowns.

Next Steps

• Roles Reference - Detailed role configurations
• Permissions Reference - Complete permission list
• Team Management - Inviting and managing users
• API Reference - Authorization endpoints