Roles Management
1. Roles Management Overview
Roles Management Page Access Sequence
| Step | Action | Details |
|---|---|---|
| 1 | Access Roles Management | Navigate to Roles & Permissions > Manage from the main navigation menu. |
| 2 | View Page Header | The page displays "Role Permissions" as the heading with description "Define which permissions are assigned to each role". |
| 3 | Check Access Level | Review the access notification at the bottom of the page. |
| 4 | Verify Permissions | If you have view only access, you will see "You have view-only access. Only superadmin can assign permissions." |
Access Level Understanding
| Access Level | Capabilities | Restrictions |
|---|---|---|
| View Only Access | Can view the Roles Management page layout and structure. | Cannot view permissions list, cannot assign permissions, cannot modify role configurations. |
| Superadmin Access | Full access to view, create, edit, and assign permissions to roles. | None within the Roles Management context. |
2. Role Permissions Viewing
Permissions Table Viewing Sequence (Superadmin Access Required)
| Step | Action | Details |
|---|---|---|
| 1 | Access Roles Management | Navigate to Roles & Permissions > Manage as a superadmin user. |
| 2 | View Permissions Table | The table displays all available permissions in the system. |
| 3 | Review Permission Columns | The table shows Permission name and associated role assignments. |
| 4 | Check Role Assignments | Review which permissions are assigned to specific roles. |
Permissions Table Structure
| Column | Description |
|---|---|
| Permission | The name of the specific permission that controls access to features or functions. |
| Role Assignments | Columns showing which roles have been granted each permission (visible to superadmin only). |
View Only Access Behavior
| Behavior | Description |
|---|---|
| Empty Table | Users with view only access see "No permissions found." in the table. |
| Access Message | A notification displays: "You have view-only access. Only superadmin can assign permissions." |
| Navigation Available | Users can still navigate to the page but cannot view or modify permission assignments. |
| Read Only Mode | All interactive elements are disabled or hidden for non superadmin users. |
3. Permission Assignment (Super admin Only)
Permission Assignment Sequence
| Step | Action | Details |
|---|---|---|
| 1 | Access Permissions Table | As superadmin, view the full permissions table with all roles displayed. |
| 2 | Locate Permission | Find the specific permission you want to assign or revoke. |
| 3 | Select Role | Identify the role that should receive or lose the permission. |
| 4 | Toggle Permission | Click the checkbox or toggle to assign or revoke the permission for that role. |
| 5 | Save Changes | Confirm the assignment change to apply it to the role. |
Permission Assignment Considerations
| Consideration | Details |
|---|---|
| Role Impact | Assigning a permission immediately grants all users with that role access to the associated feature or function. |
| Permission Scope | Each permission controls access to specific areas of the admin panel or platform functionality. |
| Inheritance | Some permissions may have dependencies on other permissions for full functionality. |
| Security | Only assign permissions necessary for the role's responsibilities to maintain system security. |
Common Permission Categories
| Category | Description | Example Permissions |
|---|---|---|
| Markets Management | Permissions related to creating, editing, and managing prediction markets. | Create Market, Edit Market, Approve Market, Reject Market, Resolve Market |
| User Management | Permissions for managing platform users and backoffice staff. | View Users, Edit Users, Suspend Users, Manage Staff |
| Financial Operations | Permissions for financial transactions and reporting. | View Transactions, Process Payments, Manage Fees, View Reports |
| System Configuration | Permissions for configuring system settings and parameters. | Edit System Config, Manage Categories, Manage Tags, Configure QT |
| Governance | Permissions related to token management and governance functions. | Manage Tokens, View Governance, Execute Governance Actions |
| Referral System | Permissions for managing the referral program. | View Referrals, Approve Claims, Manage Tiers, Configure Settings |
| Roles and Permissions | Permissions for managing roles and permission assignments. | View Roles, Edit Roles, Assign Permissions (superadmin only) |
4. Access Level Verification
Checking Your Access Level Sequence
| Step | Action | Details |
|---|---|---|
| 1 | Navigate to Roles Management | Go to Roles & Permissions > Manage. |
| 2 | Review Page Content | Check whether you can see the full permissions table or an empty state. |
| 3 | Read Access Message | Look for the message at the bottom of the page indicating your access level. |
| 4 | Verify Capabilities | Attempt to interact with elements to confirm whether you have edit permissions. |
| 5 | Contact Administrator | If you need higher access, request superadmin privileges from your system administrator. |
Access Level Indicators
| Indicator | Meaning |
|---|---|
| "You have view-only access. Only superadmin can assign permissions." | You do not have superadmin privileges and cannot modify role permissions. |
| "No permissions found." in table | The system is not displaying permissions due to insufficient access level. |
| Empty or disabled controls | Interactive elements are hidden or disabled for non superadmin users. |
| Full permissions table visible | You have superadmin access and can view and modify all permission assignments. |
Related Pages Overview
| Page | URL | Purpose |
|---|---|---|
| Manage | /admin/roles/manage | Assign permissions to roles (superadmin only). Current page. |
| List Roles | /admin/roles-permissions/list-roles | View and manage the list of all roles in the system. |
| List Permissions | /admin/roles-permissions/list-permissions | View and manage the list of all available permissions. |
5. Understanding Roles & Permissions
Role Definition
| Concept | Explanation |
|---|---|
| Role | A named collection of permissions that defines what a user or group of users can do within the system. |
| Permission | A specific authorization to perform an action or access a feature within the admin panel or platform. |
| Role Assignment | The process of associating permissions with a role to define its capabilities. |
| User Role | The role assigned to a specific user account, determining their access level and permissions. |
Common Role Examples
| Role | Typical Permissions | Use Case |
|---|---|---|
| Superadmin | All permissions including role and permission management. | System administrators with full control. |
| Admin | Most operational permissions excluding role management. | Day to day platform administration. |
| Market Manager | Create, edit, approve, and resolve markets. | Staff focused on market quality and resolution. |
| Support Staff | View users, view markets, limited editing capabilities. | Customer support team members. |
| Financial Officer | View and manage financial transactions and reports. | Finance and accounting team members. |
| Content Moderator | Review and moderate user generated content and markets. | Content quality and compliance team. |
| View Only | Read access to reports and data without editing capabilities. | Analysts and observers. |
Permission Hierarchy
| Level | Description |
|---|---|
| System Level | Highest level permissions affecting entire platform (superadmin only). |
| Administrative Level | Permissions for managing platform operations and configurations. |
| Operational Level | Permissions for day to day tasks like market management and user support. |
| Read Only Level | View permissions without modification capabilities. |
6. Requesting Access & Permissions
Access Request Process
| Step | Action | Details |
|---|---|---|
| 1 | Identify Needed Permissions | Determine which specific permissions you require to perform your duties. |
| 2 | Document Justification | Prepare a business justification explaining why you need the additional access. |
| 3 | Contact Superadmin | Reach out to a superadmin user or system administrator with your request. |
| 4 | Provide Details | Submit your request with specific permissions needed and reasoning. |
| 5 | Await Approval | Wait for the superadmin to review and approve your access request. |
| 6 | Verify Access | Once granted, log out and log back in, then verify your new permissions work as expected. |
Access Request Best Practices
| Practice | Description |
|---|---|
| Be Specific | Request only the exact permissions you need, not entire role upgrades. |
| Provide Context | Explain how the permissions will help you perform your job responsibilities. |
| Temporary Access | For short term needs, request time limited permissions that expire after the task. |
| Document Usage | Keep records of how you use elevated permissions for audit purposes. |
| Return Unneeded Access | Proactively request removal of permissions you no longer need. |
Verification Steps
| Step | Action | Details |
|---|---|---|
| 1 | Check Role Assignment | Verify your user account has the correct role assigned. |
| 2 | Review Access Message | Read any notifications on the page explaining your access level. |
| 3 | Test Other Pages | Try accessing "List Roles" or "List Permissions" to compare access levels. |
| 4 | Clear Browser Cache | Sometimes cached data can cause display issues. Clear cache and reload. |
| 5 | Try Different Browser | Rule out browser specific issues by testing in another browser. |
| 6 | Contact Support | If issues persist, contact technical support with specific error details. |
Overview
| Section | Description |
|---|---|
| Overview | Administrative interface for managing role permissions and defining access control across the platform. Only superadmin users can view and assign permissions. |
| Access Requirements | Superadmin access required for permission management. Standard admin users have view only access to this page. |
| Menu Location | Main Navigation > Roles & Permissions > Manage |
| Primary Functions | Permission Viewing (superadmin only), Permission Assignment (superadmin only), Access Level Verification |
| Security Model | Role Based Access Control (RBAC) with strict superadmin only permission management. |
Roles Management
| Overview | A security focused interface for managing role permissions that controls user access across all platform features. |
| Access Requirements | View only access for standard admins; full management access restricted to superadmin role. |
| Key Features | Role Permissions Table (super admin only) Permission Assignment (super admin only) Access Level Notifications Security Restrictions Related Pages Access (List Roles, List Permissions) |
Roles Management Access
| Step | Instruction |
|---|---|
| 1 | Navigate to Roles & Permissions > Manage from the main navigation menu. |
| 2 | The page displays "Role Permissions" heading with description "Define which permissions are assigned to each role". |
| 3 | If you have view only access, the table shows "No permissions found." |
| 4 | A message at the bottom states: "You have view-only access. Only superadmin can assign permissions." |
| 5 | Superadmin users will see the full permissions table with all roles and assignment controls. |
Permission Viewing (Super admin Only)
| Step | Instruction |
|---|---|
| 1 | Log in with a superadmin account. |
| 2 | Navigate to Roles & Permissions > Manage. |
| 3 | The permissions table displays all available permissions in the system. |
| 4 | Each row shows a permission name and columns for each role. |
| 5 | Checkboxes or toggles indicate which roles have been granted each permission. |
| 6 | Review the matrix to understand current permission assignments across all roles. |
Permission Assignment (Super admin Only)
| Step | Instruction |
|---|---|
| 1 | As super admin, locate the permission you want to assign or revoke in the table. |
| 2 | Find the column for the role that should receive or lose the permission. |
| 3 | Click the checkbox or toggle at the intersection of the permission row and role column. |
| 4 | The system toggles the permission assignment (checked = granted, unchecked = revoked). |
| 5 | Changes typically save automatically or require clicking a Save button. |
| 6 | Verify the assignment by reviewing the updated checkbox state. |
| 7 | Test the permission change by having a user with that role attempt to access the feature. |
Access Level Verification
| Step | Instruction |
|---|---|
| 1 | Navigate to Roles & Permissions > Manage. |
| 2 | Observe whether the permissions table displays data or shows "No permissions found." |
| 3 | Read the access notification message at the bottom of the page. |
| 4 | If you see "You have view-only access. Only superadmin can assign permissions.", you do not have superadmin privileges. |
| 5 | Try clicking on interactive elements to confirm whether they are disabled. |
| 6 | Navigate to related pages (List Roles, List Permissions) to compare access levels. |
| 7 | If you need higher access, contact your system administrator to request superadmin role assignment. |
Navigation to Related Pages
| Step | Instruction |
|---|---|
| 1 | From the Roles Management page, locate the Roles & Permissions section in the main navigation. |
| 2 | Click on "List Roles" to view and manage all roles in the system. |
| 3 | Click on "List Permissions" to view and manage all available permissions. |
| 4 | Use the breadcrumb at the top (Roles > Manage) to navigate back to dashboard if needed. |
| 5 | These related pages provide complementary functionality for comprehensive roles and permissions management. |
Best Practices for Roles Management
| Practice | Description |
|---|---|
| Restrict Super admin Access | Limit superadmin privileges to a small number of highly trusted administrators. This role has complete system control and should be carefully protected. |
| Apply Least Privilege | Grant users only the minimum permissions necessary for their job functions. Avoid giving broad administrative access when specific permissions suffice. |
| Regular Permission Audits | Conduct quarterly reviews of role assignments and permission configurations to ensure they remain appropriate as responsibilities change. |
| Test Permission Changes | After modifying role permissions, test with actual user accounts to verify the changes work as intended without unintended side effects. |
| Segregate Critical Duties | Separate important functions (like market creation and market resolution) across different roles to prevent conflicts of interest. |
| Track Permission Changes | Keep audit logs of who made permission changes, when, and why for security and compliance purposes. |
| Use Named Roles | Create roles with clear, descriptive names that immediately convey their purpose and scope (e.g., "Market Manager" vs "Role 3"). |
| Avoid Over Permissioning | Be conservative with permission grants. It's easier to add permissions later than to revoke inappropriate access. |
| Communicate Changes | Notify affected users when their role permissions change so they understand their new capabilities or restrictions. |
Product Glossary
| Term | Description |
|---|---|
| Roles Management | The administrative interface for defining and managing user roles and their associated permissions within the platform. |
| Role | A named set of permissions that determines what actions a user can perform in the system. Examples include Superadmin, Admin, Market Manager, Support Staff. |
| Permission | A specific authorization that grants access to perform an action or access a feature within the admin panel or platform. Examples include Create Market, Edit User, View Reports. |
| Superadmin | The highest level administrative role with full system access, including the ability to assign permissions to roles. Only superadmin users can manage role permissions. |
| Permission Assignment | The process of granting or revoking specific permissions for a role, which affects all users assigned to that role. |
| Role Permissions Page | The main page at /admin/roles/manage where superadmin users can view and assign permissions to different roles. |
| View Only Access | A restricted access level where users can navigate to the Roles Management page but cannot view the permissions list or make modifications. |
| Access Level | The tier of system access a user has, determined by their assigned role and its associated permissions. Ranges from view only to superadmin. |
| Permissions Table | The table displaying all available permissions in the system and their assignments to various roles (visible only to superadmin users). |
| Role Assignment | The action of associating a specific role with a user account, which grants that user all permissions included in the role. |
| Least Privilege Principle | Security best practice of granting users only the minimum permissions necessary to perform their job functions. |
| Segregation of Duties | Security practice of dividing critical functions among different roles to reduce risk of fraud or errors. |
| Access Notification | Message displayed on the Roles Management page informing users of their access level, such as "You have view-only access. Only superadmin can assign permissions." |
| Permission Category | A grouping of related permissions, such as Markets Management, User Management, Financial Operations, or System Configuration. |
| Markets Management Permissions | Permissions related to creating, editing, approving, rejecting, and resolving prediction markets on the platform. |
| User Management Permissions | Permissions for viewing, editing, suspending, and managing platform users and backoffice staff accounts. |
| Financial Operations Permissions | Permissions related to viewing transactions, processing payments, managing fees, and accessing financial reports. |
| System Configuration Permissions | Permissions for modifying system settings, managing categories and tags, and configuring platform parameters. |
| Governance Permissions | Permissions related to token management and executing governance actions on the platform. |
| Referral System Permissions | Permissions for viewing referrals, approving commission claims, managing tiers, and configuring referral settings. |
| Roles and Permissions Management | Permissions for viewing roles, editing role definitions, and assigning permissions (the latter restricted to superadmin). |
| Read Only Permission | A permission level that allows viewing data and information without the ability to make changes or modifications. |
| Write Permission | A permission level that allows creating, editing, or deleting data and information within a specific area. |
| Admin Permission | A permission level that allows managing and configuring specific features or areas of the platform. |
| Permission Scope | The range of features and functions that a specific permission controls access to within the system. |
| Permission Dependency | When one permission requires another permission to be granted for full functionality. |
| Permission Inheritance | The automatic granting of related or prerequisite permissions when a higher level permission is assigned. |
| Role Hierarchy | The organizational structure of roles from highest (superadmin) to lowest (view only) access levels. |
| Access Request | The formal process of requesting additional permissions or role upgrades from a superadmin user. |
| Access Justification | The business reason and explanation provided when requesting additional permissions or access levels. |
| Temporary Access | Time limited permissions granted for specific short term tasks that expire after completion or a set period. |
| Access Audit | Regular review process to verify that role assignments and permissions remain appropriate for current responsibilities. |
| Permission Revocation | The removal of a specific permission from a role, affecting all users assigned to that role. |
| Security Feature | System protection mechanism that restricts permission viewing and modification to authorized superadmin users only. |
| List Roles Page | Related page at /admin/roles-permissions/list-roles for viewing and managing all roles in the system. |
| List Permissions Page | Related page at /admin/roles-permissions/list-permissions for viewing and managing all available permissions. |
| Roles & Permissions Menu | Navigation menu section in the sidebar containing links to Manage, List Roles, and List Permissions pages. |
| Page Header | The heading "Role Permissions" displayed at the top of the Roles Management page. |
| Page Description | The text "Define which permissions are assigned to each role" explaining the page's purpose. |
| Empty State | The "No permissions found." message displayed when a user lacks sufficient access to view the permissions table. |
| Interactive Elements | Checkboxes, toggles, or buttons used to assign or revoke permissions (visible and functional only for superadmin users). |
| Access Verification | The process of checking and confirming your current access level and assigned permissions. |
| Permission Matrix | The complete mapping of all permissions to all roles, showing which roles have which permissions (super admin view). |
| System Administrator | A person or role responsible for managing system access, user accounts, and permission assignments. |
| Access Control | The security mechanism that enforces permission checks and restricts functionality based on user roles. |
| Authorization | The process of verifying whether a user has the necessary permissions to perform a specific action. |
| Authentication | The process of verifying a user's identity before granting access to the system (precedes authorization). |
| Role Based Access Control (RBAC) | The security model used by the platform where access is controlled through role assignments rather than individual user permissions. |
| Change Management | The formal process for requesting, approving, and implementing changes to role permissions. |
| Audit Trail | Record of all permission assignments, modifications, and access changes for security and compliance purposes. |
| Compliance | Adherence to security policies and regulations regarding access control and permission management. |
| Need to Know Basis | Security principle where access is granted only to information required for specific job responsibilities. |
| Privilege Escalation | The process of gaining higher access levels or additional permissions, either through proper requests or security vulnerabilities. |