Roles & Permissions
Pivor includes a flexible role-based access control system that allows administrators to manage what users can see and do.
Default Roles
Pivor comes with three system roles:
Admin
Full system access- Full access to all features
- Can manage users and roles
- Can see all records
- Cannot be deleted
Manager
Team oversight- Can view all records
- Can create, edit, delete data
- Cannot manage users
- Cannot manage roles
User
Standard access- Can only see assigned records
- Can create new records
- Can edit their own records
- Cannot see other users' data
Permissions
Permissions are organized by module:
Clients
clients.view
View client records
clients.create
Create new clients
clients.edit
Edit existing clients
clients.delete
Delete clients
Contacts
contacts.view
View contact records
contacts.create
Create new contacts
contacts.edit
Edit existing contacts
contacts.delete
Delete contacts
Communications
communications.view
View communications
communications.create
Create communications
communications.edit
Edit communications
communications.delete
Delete communications
Administration
users.manage
Manage user accounts
roles.manage
Manage roles & permissions
records.view_all
View all records (not just assigned)
Managing Roles
Administrators can manage roles from the Admin menu:
Navigate to Roles
Go to Admin → Roles in the main menu
Create or Edit Role
Click Create Role or edit an existing role
Configure Permissions
Enter a name and description, then select the permissions for this role
Save
Click Save to apply the role configuration
System Roles
System roles (Admin, Manager, User) cannot be deleted but can be modified. The Admin role always has all permissions and cannot be restricted.
Assigning Users to Roles
Navigate to Users
Go to Admin → Users
Edit User
Click Edit on the user you want to modify
Select Role & Save
Select a role from the dropdown and save the user
Record Visibility
Record visibility is controlled by the records.view_all permission:
| Role | Record Visibility |
|---|---|
| Admin | All records |
| Manager | All records |
| User | Only assigned records |
Record Assignment
Records are assigned via the assigned_to field on clients, contacts, and communications. Users can only see records where they are the assigned user.