Users & Roles
Atrope uses role-based access control (RBAC). Every user is assigned one or more roles, and each role carries a set of permissions that control what that user can see and do.
Roles
Go to Settings → Roles to manage roles. Each role has:
- A name and description
- A set of permission toggles — one per module action
Default roles included out of the box:
| Role | What they can do |
|---|---|
| Admin | Full access to everything, including settings |
| Warehouse Manager | Stock, transfers, cycle counts, receiving |
| Procurement Officer | POs, requisitions, receiving |
| Sales Rep | Sales orders and shipments (read/write) |
| Read Only | View everything, change nothing |
Permissions
Permissions follow an action + scope pattern:
inventory.view— can see on-hand stockinventory.adjust— can post adjustmentsprocurement.orders.create— can raise POssettings.users.manage— can invite and deactivate users
Toggling a permission on a role grants it to all users with that role.
Users
Go to Settings → Users to see everyone with access to your workspace.
Inviting a user
- Click + Invite user
- Enter their email address
- Select their role(s)
- Click Send invite
They’ll receive an email with a link to set their password and log in.
Changing a role
Click the role selector next to a user’s name to change their role immediately. The change takes effect on their next action — no need to re-login.
Deactivating a user
Deactivated users cannot log in but their history is preserved in the audit log. You cannot permanently delete a user.
Multi-role users
A user can have multiple roles. Their effective permissions are the union of all roles — they get the most permissive combination.