Admin · Access Control
Permissions
Three-tier hierarchy made explicit · Company / Client / Event scopes
Day-to-day operator on assigned events. Full CRUD on events they own; read on portfolio.
Permissions matrix · NVE Producer
14 cells granted across 9 resources × 5 actions × 4 scopes
| Resource | Company | Client | Event | Self | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| R | W | A | D | X | R | W | A | D | X | R | W | A | D | X | R | W | A | D | X | |
| Events | ||||||||||||||||||||
| Vendors | ||||||||||||||||||||
| Contracts | ||||||||||||||||||||
| Budgets | ||||||||||||||||||||
| Rates | ||||||||||||||||||||
| Users | ||||||||||||||||||||
| Integrations | ||||||||||||||||||||
| Audit log | ||||||||||||||||||||
| AI decisions | ||||||||||||||||||||
Granted
Denied
R = ReadW = WriteA = ApproveD = DeleteX = Admin
Each cell represents a (resource, action, scope) combination. Personas inherit from named permission sets — production system would show inheritance lineage.