SuitePortal

Authorization

How access control and permissions work in SuitePortal.

Authorization

This documentation is currently being developed. Check back soon for complete content.

Overview

SuitePortal uses role-based access control (RBAC) to manage what authenticated users can access.

Authorization Flow

Request → Authenticate → Get Memberships → Check Permissions → Allow/Deny

Key Concepts

Organization Membership

Users belong to organizations with specific roles.

Roles

Roles define permission sets:

  • Admin
  • Member
  • Viewer
  • Custom roles

Permissions

Fine-grained access controls:

  • Resource-based (transactions, entities)
  • Action-based (read, write, manage)

Enforcement

Authorization is enforced at:

  • API layer
  • UI layer (hiding/showing elements)
  • Data layer (filtering results)

Authentication

How user authentication works in SuitePortal.

Session Management

How user sessions are managed in SuitePortal.

On this page

AuthorizationOverviewAuthorization FlowKey ConceptsOrganization MembershipRolesPermissionsEnforcementRelated