RBAC Pro-Business Package Matrix

Endpoint	owner	accountant	acctFirm	salesManager	seniorSales	salesAdmin	salesPurchase	hrManager	cashier
Contacts: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.
Products: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.
Finance: GET accounts	✓ Allow HTTP 200	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✓ Allow HTTP 200	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.
BankReconcile: GET transactions	404	404	404	404	404	404	404	404	404
ChartOfAccounts: GET group	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
BookOfAccounts: GET by id	✓ Allow HTTP 200	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✓ Allow HTTP 200	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.
WithholdingTax: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
PaymentSlip: GET list	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
FixedAsset: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Purchase: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Transfer: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Inventory: GET warehouses	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200
Payroll: GET employee list	⚠ exp:Allow got:HTTP 405 HTTP 405	⚠ exp:Deny got:HTTP 405 HTTP 405	⚠ exp:Allow got:HTTP 405 HTTP 405	⚠ exp:Deny got:HTTP 405 HTTP 405	⚠ exp:Deny got:HTTP 405 HTTP 405	⚠ exp:Deny got:HTTP 405 HTTP 405	⚠ exp:Deny got:HTTP 405 HTTP 405	⚠ exp:Allow got:HTTP 405 HTTP 405	⚠ exp:Deny got:HTTP 405 HTTP 405
PayrollSettings: GET setting	✓ Allow HTTP 200	⚠ exp:Allow got:Deny HTTP 200 ⚠ soft-deny Permission denied.	✓ Allow HTTP 200	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.	✓ Allow HTTP 200	✗ Deny HTTP 200 ⚠ soft-deny Permission denied.
Doc:Quotation: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Doc:TaxInvoice: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Doc:Receipt: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Doc:CashInvoice: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Doc:CreditNote: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Doc:DebitNote: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Doc:PurchaseOrder: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Doc:Expense: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200
Doc:BillingNote: GET list	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	✓ Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200	⚠ exp:Deny got:Allow HTTP 200

RBAC Pro-Business Package Permission Matrix