Authorization (HRM)
Authorization (HRM) defines Raytio's access control model. It covers user roles, role hierarchy, permissions, authorization policies, relationship-based access, and menu visibility.
What you will find here
Explanation
Conceptual documentation that explains how the authorization system works:
- Authorization Model Overview — how Raytio combines roles, permissions, policies, relationship-based access, and menus
- User Roles and Role Hierarchy — roles, parent roles, role types, and inheritance
- Authorization Policies — policy templates, policies, and user/role policy assignments
- Permissions — business-area permissions with ALL_RECORDS and OWN_RECORDS scope
- Role Menus — controlling UI visibility per role
- ReBAC Authorization — relationship-based access control with tuples and conditions
- Role Groups and Inheritance — how role groups cascade permissions through the hierarchy