navidocs

dannystocker/navidocs

Fork 0

Commit graph

Author	SHA1	Message	Date
ggq-admin	fd403323bb	feat: Phase 2 - Authorization & multi-tenancy permissions Implement granular permission system with organization and entity-level access control: Services: - authorization.service.js: Permission management (grant, revoke, check entity permissions, organization membership) - organization.service.js: Organization CRUD operations and statistics Routes: - organization.routes.js: 9 organization endpoints (create, list, update, delete, members management, stats) - permission.routes.js: 5 permission endpoints (grant, revoke, list, check permissions) Features: - Multi-tenancy with organizations - 4-tier permission hierarchy (viewer < editor < manager < admin) - Entity-level granular permissions - Organization role-based access control - Permission expiration support - Super admin delegation (org admins can grant permissions to users for entities) Middleware Enhancements: - requireOrganizationMember: Verify org membership - requireOrganizationRole: Check role level - requireEntityPermission: Verify entity access Use Case: Agency admins can grant specific boat access to technicians, captains, and office staff with different permission levels Cross-Vertical Compatible: Works for marine (boats), aviation (aircraft), vehicles, or any entity type 🤖 Generated with Claude Code	2025-10-21 10:11:51 +02:00

Author

SHA1

Message

Date

ggq-admin

fd403323bb

feat: Phase 2 - Authorization & multi-tenancy permissions

Implement granular permission system with organization and entity-level access control:

Services:
- authorization.service.js: Permission management (grant, revoke, check entity permissions, organization membership)
- organization.service.js: Organization CRUD operations and statistics

Routes:
- organization.routes.js: 9 organization endpoints (create, list, update, delete, members management, stats)
- permission.routes.js: 5 permission endpoints (grant, revoke, list, check permissions)

Features:
- Multi-tenancy with organizations
- 4-tier permission hierarchy (viewer < editor < manager < admin)
- Entity-level granular permissions
- Organization role-based access control
- Permission expiration support
- Super admin delegation (org admins can grant permissions to users for entities)

Middleware Enhancements:
- requireOrganizationMember: Verify org membership
- requireOrganizationRole: Check role level
- requireEntityPermission: Verify entity access

Use Case:
Agency admins can grant specific boat access to technicians, captains, and office staff with different permission levels

Cross-Vertical Compatible:
Works for marine (boats), aviation (aircraft), vehicles, or any entity type

🤖 Generated with Claude Code

2025-10-21 10:11:51 +02:00

1 commit