2 docs tagged with "access control"

The PPM module uses a layered role system that combines tenant-level permissions with project-level roles. This page explains how the roles relate to each other and what each role can do.

Some work items contain sensitive information — security vulnerabilities, personnel matters, or pre-announcement features — that should only be visible to specific people, even within a project team. The PPM module handles this with a confidential flag on each work item.