Permissions & Staff Roles¶

Managing Access Control¶

PulseRoster provides a flexible permission system with staff roles, community roles, and department-level command staff permissions.

Permission Levels¶

Hierarchy¶

Level	Description
Owner	Full control over everything
Community Staff	Has `isCommunityStaff` flag, sees staff sections
Staff Role Holder	Has permissions defined by their staff role
Command Staff	Department-level permissions via rank
Member	Standard community member

Community Staff Flag¶

Members with isCommunityStaff enabled:

See staff-only dashboard sections
Access analytics and reports
View audit logs
Access settings (with appropriate permissions)

Staff Roles¶

Create custom staff roles at Settings > Staff Roles.

Creating a Staff Role¶

Click Create Staff Role
Enter name and description
Select permissions
Click Create

Available Permissions¶

Member Permissions¶

Permission	Description
`member.view`	View member profiles
`member.create`	Add new members
`member.edit`	Edit member information
`member.delete`	Remove members

Department Permissions¶

Permission	Description
`department.edit`	Modify departments
`department.manage_subdivisions`	Manage subdivisions
`department.delete`	Delete departments

Feature Permissions¶

Permission	Description
`loa.manage`	Approve/deny LOAs
`disciplinary.issue`	Issue discipline
`disciplinary.manage`	Manage all discipline
`commendation.award`	Give commendations
`certification.manage`	Manage certifications

Administrative Permissions¶

Permission	Description
`community.settings`	Access community settings
`audit.view`	View audit logs
`staff.assign`	Assign staff roles
`invite.create`	Create invite links

Assigning Staff Roles¶

How to Assign¶

Go to member profile
Click Assign Staff Role
Select the role
Click Assign

Multiple Roles¶

Members can have multiple staff roles. Permissions combine (union of all permissions).

Removing Roles¶

Go to member profile
Find the assigned role
Click Remove

Command Staff¶

Department-level permissions through ranks.

How It Works¶

Ranks marked as isCommandStaff: true grant permissions within their department:

Permission	Scope
Approve/deny LOA requests	Department members only
Issue disciplinary actions	Department members only
Award commendations	Department members only
Promote members	Within department
View department audit logs	Department changes only

Setting Up¶

Edit the rank
Enable Command Staff toggle
Save

Command Staff vs Community Staff¶

Feature	Command Staff	Community Staff
Scope	Their department only	Entire community
Source	Rank designation	Staff role/flag
Automatic	Yes, via rank	No, must assign

Community Roles¶

For non-permission roles (titles/badges).

Creating Community Roles¶

Go to Settings > Community Roles
Click Add Role
Enter name and color
Save

Examples¶

Role	Purpose
Trainer	Training team member
Coordinator	Event coordinator
Developer	Technical contributor
Mentor	New member mentor

Assigning¶

Go to member profile
Click Assign Community Role
Select role
Confirm

Permission Matrix¶

Quick Reference¶

Action	Owner	Staff	Command	Member
View members	✓	✓	✓	✓
Edit members	✓	*	Dept	✗
Approve LOA	✓	*	Dept	✗
Issue discipline	✓	*	Dept	✗
Award commendations	✓	*	Dept	✗
Access settings	✓	*	✗	✗
Manage roles	✓	*	✗	✗

* Depends on assigned staff role permissions

Best Practices¶

Least Privilege: Grant only necessary permissions
Role-Based: Use staff roles instead of individual permissions
Document Roles: Maintain clear descriptions of what each role can do
Regular Review: Periodically audit staff role assignments
Separation: Keep administrative and operational roles separate

Quick Reference¶

Permission URLs¶

Page	URL
Staff Roles	`/c/[slug]/settings/staff-roles`
Community Roles	`/c/[slug]/settings/community-roles`

Required Permissions¶

Action	Permission
View staff roles	Staff
Create staff roles	`staff.assign`
Assign staff roles	`staff.assign`

Need help? Join our Discord Community for support.