AeroclubHQ

Roles

Permission-based roles — fine-grained matrices controlling exactly what holders can view and do.

What it is

Roles define what people are allowed to do in the system. Shown as a card grid, each role is a matrix of fine-grained permissions controlling exactly what its holders can view and do — from reading flight records to editing pricing rules. Assigning a user a role is how you decide their reach.

yourclub.aeroclubhq.com/roles
Roles shown as a card grid, each summarising its permissions

These permissions are not cosmetic: every UI control and every server action is gated by them, so the controls a user cannot use simply do not appear, and the actions they are not allowed to take are refused on the server too. Roles that fall out of use can be archived or deactivated rather than deleted, keeping the history intact. Open an individual role to inspect and adjust its permission matrix.

yourclub.aeroclubhq.com/roles/[id]
Editing a role: name, key, status and the permission matrix where granting Manage implies View

When editing a role, each capability has a View and a Manage level. Granting Manage automatically includes the matching View (it appears ticked and locked), so you can’t accidentally let someone edit something they cannot see.

How to use it

  • Browse the card grid — scan all roles and the access each one grants.
  • Open a role — review and edit its permission matrix at /roles/[id].
  • Tune permissions — grant only what a role needs; unavailable controls disappear for its holders.
  • Archive unused roles — deactivate roles you no longer assign instead of deleting them.
  • Users — the accounts to which roles are assigned.
  • Members — club members managed under these permissions.
  • Audit Log — records actions permitted by each role.
← Users