Payments — permissions
Scaffolded stub — replace with proper documentation when this module is next touched.
Returned by PaymentsModule.get_permissions() (relative names; the registry namespaces them as payments.<name>).
| Permission | Allows | Required by |
|---|---|---|
payments.record.read | Describe what this allows. | List the endpoints. |
payments.record.write | Describe what this allows. | List the endpoints. |
payments.record.refund | Describe what this allows. | List the endpoints. |
payments.reports.read | Describe what this allows. | List the endpoints. |
Role assignment
See backend/app/core/auth/permissions.py for the canonical role table.
Adding a new permission
- Add the relative name to
get_permissions()inbackend/app/modules/payments/__init__.py(ormodule.py). - Add the namespaced form to the relevant role(s) in
backend/app/core/auth/permissions.py. - Add a row to the table above.
- Annotate the endpoint(s) with
Depends(require_permission(...)). - Update
frontend/app/config/permissions.tsif it gates UI.