Roles Definition - martinmendozadev/StateForce GitHub Wiki
🔐 Roles Definition
This page describes the different user roles available in StateForce and their responsibilities. Roles are designed to support a hierarchical structure commonly used in emergency operations centers, ensuring secure and efficient access to system functionality.
👥 Available Roles
1. Administrator
- Full System Access: Can access all features and settings across the platform.
- User Management: Add, remove, and update users, roles, and permissions.
- System Configuration: Manage global system settings, agency profiles, and integrations.
- Audit Logs: View activity logs and system metrics for compliance and maintenance.
- Reports: Generate detailed system-wide reports and statistics.
- Resource Management: Can oversee resource allocation and approve operator assignments.
2. Operator
- Incident Management: Create, update, and close emergency incidents.
- Resource Allocation: Assign resources such as ambulances, fire brigades, and rescue units.
- Real-time Operations: Track live resource locations and statuses on dashboards.
- Personnel Management: Manage on-duty personnel schedules and availability.
- Role Limitations: Cannot modify system configurations, manage users, or access sensitive audit logs.
3. Supervisor
- Operational Oversight: Monitor operator activity and ensure effective resource distribution.
- Incident Monitoring: Track live updates and statuses of emergency incidents.
- Reports & Statistics: Generate operational and historical reports for analysis.
- Resource Approval: Approve or reject resource reassignment requests made by operators.
- Role Limitations: Cannot modify user roles, system settings, or directly assign resources.
4. Guest
- Read-Only Access: View selected public dashboards and shared reports.
- External Collaboration: Intended for auditors, temporary users, or partner institutions.
- Role Limitations: Cannot interact with or modify operational data or configurations.
📊 Role Matrix Overview
| Action/Permission | Administrator | Operator | Supervisor | Guest |
|---|---|---|---|---|
| Manage users and roles | ✓ | |||
| Configure system settings | ✓ | |||
| View incident reports | ✓ | ✓ | ✓ | ✓ |
| Create or update incidents | ✓ | ✓ | ||
| Assign emergency resources | ✓ | ✓ | ||
| Monitor real-time operations | ✓ | ✓ | ✓ | ✓ |
| Access live geospatial data | ✓ | ✓ | ✓ | ✓ |
| Generate statistics/reports | ✓ | ✓ | ||
| Approve resource assignments | ✓ | ✓ | ||
| View activity logs | ✓ | ✓ | ||
| Access read-only dashboards | ✓ | ✓ | ✓ | ✓ |
📌 Additional Notes
- Customizable Roles: Future versions of StateForce may allow agencies to create custom roles based on their operational needs.
- Principle of Least Privilege: Permissions are restricted to ensure users only access what is necessary for their role.
- Role Assignment: Always validate the clearance level and operational scope of the user before assigning roles.
- Feedback: For recommendations or modifications to role definitions, contact a system administrator or the project lead.
This detailed breakdown ensures clarity and structure in role-based access control, empowering agencies to operate efficiently and securely.